Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/03/26 6:50 p.m.5 views

GHSA-HF2R-9GF9-RWCH Convict has prototype pollution via load(), loadFile(), and schema initialization

Impact Two unguarded prototype pollution paths exist, not covered by previous fixes: 1. config.load / config.loadFile — overlay recursively merges config data without checking for forbidden keys. Input containing proto or constructor.prototype e.g. from a JSON file causes the recursion to reach...

9.4CVSS5.9AI score0.00037EPSS
Exploits0References4
Packet Storm
Packet Stormadded 2022/12/21 12:0 a.m.217 views

Senayan Library Management System 9.2.2 SQL Injection

Title: Senayan Library Management System v9.2.2 a.k.a SLIMS 9 Multiple SQLi-Not sanitizing correctly cookie session. Author: nu11secur1ty Date: 12.20.2022 Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/tag/v9.2.2 Reference:...

0.3AI score
Exploits0
Exploit DB
Exploit DBadded 2022/02/23 12:0 a.m.396 views

Air Cargo Management System v1.0 - SQLi

Title: Air Cargo Management System v1.0 - SQLi Author: nu11secur1ty Date: 02.18.2022 Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15188/air-cargo-management-system-php-oop-free-source-code.html Reference:...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTECadded 2022/01/25 12:0 a.m.4 views

The vulnerability of the Sphinx search system, related to a path traversal error, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Sphinx search system is related to a path traversal error. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the CALL SNIPPETS operator or the loadfile function...

9.4CVSS7.1AI score0.02166EPSS
Exploits2References9Affected Software3
0day.today
0day.todayadded 2008/04/05 12:0 a.m.24 views

Gaming Directory 1.0 (cat_id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ Gaming Directory 1.0 catid Remote SQL Injection Vulnerability ================================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2008/04/05 12:0 a.m.40 views

Gaming Directory 1.0 - 'cat_id' SQL Injection

--==+================================================================================+==-- --==+ Gaming Directory 1.0 SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: 5 April 2008...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2008/01/16 12:0 a.m.21 views

fapersianhack-sql.txt

FaScript FaPersianHack v1 Remote Sql Injection BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://fascript.com/fapersianhack.zip Injection Adress : http://Sitename/ph/show.php?id= Help : In This Script Admin Username and Password Save in ./admin/pconfig.php You can open this file with...

7.4AI score
Exploits0
Rows per page
Query Builder