Lucene search
K

167 matches found

Prion
Prion
added 2023/08/10 1:15 p.m.17 views

Sql injection

Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the login id and password fields during the login...

7.5CVSS9.8AI score0.00815EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/10 12:0 a.m.10 views

CVE-2023-37069

Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the login id and password fields during the login...

8.1AI score0.00815EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.5 views

SAP BusinessObjects Business Intelligence 信息泄露漏洞

SAP BusinessObjects Business IntelligenceSuite is a suite of business intelligence software and enterprise performance solutions from SAP, Germany. The product features report generation, analytics and data visualization. An information disclosure vulnerability exists in SAP BusinessObjects...

4.4CVSS6.1AI score0.00107EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/07/25 12:0 a.m.21 views

Cisco Nexus and Cisco Multilayer Director Switches MOTD Telnet Login Reset (CVE-2015-0775)

The banner aka MOTD implementation in Cisco NX-OS 4.12E11f on Nexus 4000 devices, 5.21SV32.1 on Nexus 1000V devices, 6.02N22 on Nexus 5000 devices, 6.211 on MDS 9000 devices, 6.212 on Nexus 7000 devices, 7.03 on Nexus 9000 devices, and 7.20ZN99.67 on Nexus 3000 devices allows remote attackers to...

5CVSS5.6AI score0.02962EPSS
Exploits0References4
Prion
Prion
added 2023/06/21 1:15 p.m.38 views

Sql injection

Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the username and password fields during the login process...

7.5CVSS9.8AI score0.14242EPSS
Exploits5References5Affected Software1
Cvelist
Cvelist
added 2023/06/21 12:0 a.m.34 views

CVE-2023-33584

Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the username and password fields during the login process...

10AI score0.14242EPSS
Exploits5References5
Vulnrichment
Vulnrichment
added 2023/06/21 12:0 a.m.13 views

CVE-2023-33584

Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the username and password fields during the login process...

8AI score0.14242EPSS
Exploits5References5
Exploit DB
Exploit DB
added 2023/04/01 12:0 a.m.238 views

Reprise Software RLM v14.2BL4 - Cross-Site Scripting (XSS)

Exploit Title: Reprise Software RLM v14.2BL4 - Cross-Site Scripting XSS Exploit Author: Mohammed A.Siledar Author Company : reprisesoftware Version: rlm.v14.2BL4 Vendor home page : https://reprisesoftware.com Software Link:...

6.1CVSS6.6AI score0.02527EPSS
Exploits4
Vulnrichment
Vulnrichment
added 2023/02/21 12:0 a.m.7 views

CVE-2022-45677

SQL Injection Vulnerability in tanujpatra228 Tution Management System TMS via the email parameter to processes/studentlogin.process.php...

9.9AI score0.0086EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/21 12:0 a.m.4 views

Tution Management System SQL注入漏洞

Tution Management System is the tuition management system. A security vulnerability exists in tanujpatra228 Tution Management System TMS that stems from the discovery of an email parameter via processes/studentlogin.process.php that contains a SQL injection vulnerability...

9.8CVSS8.6AI score0.0086EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.2 views

PT-2023-35109 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.93 Description: The issue is related to a use-after-free UAF error during the login process when accessing the shost ip address in the iscsi tcp module. The actual impact and attack plausibility have not y...

7.2AI score
Exploits0References1
OSV
OSV
added 2023/02/03 10:15 p.m.2 views

UBUNTU-CVE-2022-24895

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. When authenticating users Symfony by default regenerates the session ID upon login, but preserves the rest of session attributes. Because this does not clear CSRF tokens upon login, this might enable...

8.8CVSS5.7AI score0.0079EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/12/22 12:0 a.m.4 views

Mozilla VPN 授权问题漏洞

Mozilla VPN is an open source virtual private network web browser extension, desktop application and mobile application from the US-based Mozilla Foundation. A security vulnerability in Mozilla VPN iOS before 1.0.7929, Mozilla VPN Windows before 1.2.2, and Mozilla VPN Android before 1.1.01360 ste...

7.6CVSS7.3AI score0.00469EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/12/09 1:30 p.m.27 views

CVE-2022-2752 Potential vulnerabilities in GM login process

A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. This issue affects: Secomea GateManager versions from 9.4 through 9.7...

5.5CVSS7.6AI score0.00178EPSS
Exploits0References1
OSV
OSV
added 2022/10/24 2:15 p.m.3 views

CVE-2021-45925

Observable discrepancies in the login process allow an attacker to guess legitimate user names registered in the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...

5.3CVSS5.8AI score0.00505EPSS
Exploits0References2
NVD
NVD
added 2022/10/24 2:15 p.m.30 views

CVE-2021-45925

Observable discrepancies in the login process allow an attacker to guess legitimate user names registered in the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...

5.3CVSS0.00505EPSS
Exploits0References2
Prion
Prion
added 2022/10/24 2:15 p.m.11 views

Buffer overflow

Observable discrepancies in the login process allow an attacker to guess legitimate user names registered in the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...

5CVSS5.2AI score0.00505EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/10/24 12:0 a.m.31 views

CVE-2021-45925 Username Enumeration

Observable discrepancies in the login process allow an attacker to guess legitimate user names registered in the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...

5.3CVSS5.5AI score0.00505EPSS
Exploits0References2
CVE
CVE
added 2022/10/24 12:0 a.m.52 views

CVE-2021-45925

CVE-2021-45925 affects Lanner Inc IAC-AST2500A standard firmware v1.10.0. Multiple connected sources confirm a vulnerability in the login process that allows observable discrepancies enabling an attacker to enumerate/guess legitimate BMC usernames. The root cause is described as a login process d...

5.3CVSS5.2AI score0.00505EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2022/10/12 9:15 p.m.37 views

CVE-2021-36369

An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2...

7.5CVSS0.01348EPSS
Exploits0References4
Rows per page
Query Builder