Lucene search
K

223 matches found

CNNVD
CNNVD
added 2025/10/20 12:0 a.m.6 views

E-commerce 安全漏洞

E-commerce is a dynamic e-commerce website by the individual developer Bhabishya Ghimire. A security vulnerability exists in E-commerce version 1.0, which stems from the /index parameter not clearing the input to be reflected directly back to the HTML response, which could lead to a cross-site...

6.1CVSS5.9AI score0.00241EPSS
Exploits1References2
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda CH22 formWrlsafeset function stack buffer overflow vulnerability

Tenda CH22 is an enterprise-grade wireless router from Tenda. Tenda CH22 has a stack buffer overflow vulnerability, which originates from the parameter mitssidindex in the formWrlsafeset function in file /goform/AdvSetWrlsafeset that fails to correctly validate the length of the input data, which...

10CVSS8.4AI score0.06192EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5240

Malware in sbrugna...

8.8CVSS8.7AI score0.01462EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-5617

Malware in sbrugna...

7.5CVSS6.4AI score0.00967EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-18516

Malware in sbrugna...

8.8CVSS8.7AI score0.01098EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-2567

Malware in sbrugna...

5CVSS6.4AI score0.0243EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-38446

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00889EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-40417

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01013EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-45867

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00773EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-38443

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00889EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31509

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.0051EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-30853

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00896EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36202

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00418EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-38447

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00889EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-45370

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00685EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.6 views

ARD GEC en Lign 安全漏洞

ARD GEC en Ligne is an online service portal of ARD France. A security vulnerability exists in versions of ARD GEC en Lign prior to 2025-04-23, which stems from improper handling of the GET parameter in index.php, which could lead to SQL injection attacks and elevation of privilege...

6.3CVSS7.7AI score0.00333EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/17 10:45 p.m.6 views

CVE-2025-10479

A security flaw has been discovered in SourceCodester Online Student File Management System 1.0. The impacted element is an unknown function of the file /index.php. Performing manipulation of the argument studno results in sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.2AI score0.00398EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/30 6:21 p.m.4 views

CVE-2025-50985

diskover-web v2.3.0 Community Edition is vulnerable to multiple reflected cross-site scripting XSS flaws in its web interface. Unsanitized GET parameters including maxage, maxindex, index, path, q query, and doctype are directly echoed into the HTML response, allowing attackers to inject and...

5.6CVSS6.6AI score0.00224EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/08/14 10:1 a.m.11 views

CVE-2025-7761 Reflected XSS in Lepszy BIP

Lepszy BIP is vulnerable to Reflected Cross-Site Scripting XSS. Improper input validation in index.php form in one of the parameters allows arbitrary JavaScript to be executed on victim's browser when specially crafted URL is opened. The vendor was contacted early about this disclosure but did no...

5.1CVSS0.00417EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:59 a.m.11 views

CVE-2024-33405

SQL injection vulnerability in addfriends.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the friendindex parameter...

8.6CVSS8.6AI score0.00522EPSS
Exploits1References1
Rows per page
Query Builder