Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

NVD
NVDadded 2026/04/05 9:16 p.m.1 views

CVE-2019-25668

News Website Script 2.0.5 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the news ID parameter. Attackers can send GET requests to index.php/show/news/ with malicious SQL statements to extract sensitive...

8.8CVSS0.00107EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2026/04/05 8:45 p.m.2 views

CVE-2019-25668

News Website Script 2.0.5 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the news ID parameter. Attackers can send GET requests to index.php/show/news/ with malicious SQL statements to extract sensitive...

8.8CVSS6AI score0.00107EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2026/04/05 8:45 p.m.4 views

CVE-2019-25668

CVE-2019-25668 affects News Website Script 2.0.5. The vulnerability is an SQL injection in the news ID parameter, exploitable via GET requests to index.php/show/news/. Unauthenticated attackers can manipulate queries and potentially extract sensitive data. Metrics indicate high impact on confiden...

8.8CVSS6AI score0.00107EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/05 8:45 p.m.1 views

CVE-2019-25668 News Website Script 2.0.5 SQL Injection via index.php

News Website Script 2.0.5 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the news ID parameter. Attackers can send GET requests to index.php/show/news/ with malicious SQL statements to extract sensitive...

8.8CVSS6AI score0.00107EPSS
Exploits1References3
CNNVD
CNNVDadded 2026/04/05 12:0 a.m.2 views

News Website Script SQL注入漏洞

News Website Script is a website-building system script from the PHP Scripts Mall community. Version 2.0.5 of News Website Script contains an SQL injection vulnerability. This vulnerability stems from the SQL injection in the news ID parameter, which could allow unverified attackers to manipulate...

8.8CVSS5.9AI score0.00107EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-18672

Malware in sbrugna...

9.8CVSS9.5AI score0.00233EPSS
Exploits1References2
exploitpack
exploitpackadded 2019/02/25 12:0 a.m.14 views

News Website Script 2.0.5 - SQL Injection

News Website Script 2.0.5 - SQL Injection Exploit Title: News Website Script 2.0.5 - SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 22, 2019 Vendor Homepage: http://www.phpscriptsmall.com/ Software Link :...

8.6AI score
Exploits0
OSV
OSVadded 2018/02/13 5:29 p.m.2 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

9.8CVSS5.8AI score
Exploits0References1
Cvelist
Cvelistadded 2018/02/13 5:0 p.m.11 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

10AI score0.00233EPSS
Exploits1References1
CVE
CVEadded 2018/02/13 5:0 p.m.36 views

CVE-2018-6928

CVE-2018-6928 affects PHP Scripts Mall News Website Script 2.0.4, with a SQL Injection vulnerability in the search term parameter. Root cause is improper handling of user input allowing unauthorized SQL execution. Impact per sources is high: potential leakage of data, data alteration, and disrupt...

9.8CVSS9.8AI score0.00233EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder