Lucene search
+L

26 matches found

nvd
nvd
added 2026/04/09 4:17 a.m.4 views

CVE-2026-5837

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS0.00259EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/04/09 3:15 a.m.3 views

CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS5.7AI score0.00259EPSS
Exploits0References5
cve
cve
added 2026/04/09 3:15 a.m.13 views

CVE-2026-5837

CVE-2026-5837 affects PHPGurukul News Portal Project 4.1, specifically an SQL injection via the Comment parameter in /news-details.php. The vulnerability is triggered by manipulating the Comment argument, enabling remote exploitation and with an exploit being publicly available. No remediation or...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/04/09 3:15 a.m.6 views

CVE-2026-5837

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References5Affected Software1
cvelist
cvelist
added 2026/04/09 3:15 a.m.39 views

CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS0.00259EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/04/09 12:0 a.m.8 views

PT-2026-31576

Name of the Vulnerable Software and Affected Versions PHPGurukul News Portal Project version 4.1 Description A flaw exists in PHPGurukul News Portal Project 4.1, specifically within the /news-details.php file. Manipulation of the Comment argument can lead to SQL injection. The attack can be...

7.5CVSS7AI score0.00259EPSS
Exploits0References9
euvd
euvd
added 2026/03/24 12:30 p.m.5 views

EUVD-2019-20013

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References4
nvd
nvd
added 2026/03/24 12:16 p.m.6 views

CVE-2019-25636

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS0.00327EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2026/03/24 11:27 a.m.2 views

CVE-2019-25636 Zeeways Jobsite CMS Lastest SQL Injection via id Parameter

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References3
cve
cve
added 2026/03/24 11:27 a.m.10 views

CVE-2019-25636

Zeeways Jobsite CMS (CVE-2019-25636) contains an SQL injection vulnerability in the id parameter of the news_details.php, jobs_details.php, and job_cmp_details.php endpoints. The flaw allows unauthenticated attackers to manipulate database queries by injecting SQL code (including GROUP BY and CAS...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References3Affected Software1
attackerkb
attackerkb
added 2026/03/24 11:27 a.m.2 views

CVE-2019-25636

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References3
cvelist
cvelist
added 2026/03/24 11:27 a.m.22 views

CVE-2019-25636 Zeeways Jobsite CMS Lastest SQL Injection via id Parameter

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS0.00327EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2026/03/24 12:0 a.m.4 views

PT-2026-27370

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to news details.php, jobs details.php, or job cmp details.php with malicious...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References4
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-8736

Malware in sbrugna...

9.8CVSS9.2AI score0.02978EPSS
Exploits1References3
redhatcve
redhatcve
added 2025/05/23 9:19 a.m.10 views

CVE-2024-36840

SQL Injection vulnerability in Boelter Blue System Management v.1.3 allows a remote attacker to execute arbitrary code and obtain sensitive information via the id parameter to newsdetails.php and locationdetails.php; and the section parameter to services.php...

9.1CVSS7.6AI score0.02241EPSS
Exploits3References1
osv
osv
added 2024/09/19 11:15 p.m.3 views

CVE-2024-9008

A vulnerability classified as critical was found in SourceCodester Best Online News Portal 1.0. This vulnerability affects unknown code of the file /news-details.php of the component Comment Section. The manipulation of the argument name leads to sql injection. The attack can be initiated remotel...

9.8CVSS5.7AI score0.00644EPSS
Exploits1References5
cnnvd
cnnvd
added 2024/09/19 12:0 a.m.6 views

Best Online News Portal SQL注入漏洞

Best Online News Portal is an online news portal by Mayuri K. Individual developer. A SQL injection vulnerability exists in Best Online News Portal version 1.0, which stems from the parameter name in the file /news-details.php that can lead to SQL injection...

9.8CVSS7AI score0.00644EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2024/06/12 12:0 a.m.9 views

PT-2024-27176 · Unknown · Boelter Blue System Management

Name of the Vulnerable Software and Affected Versions: Boelter Blue System Management version 1.3 Description: The issue allows a remote attacker to execute arbitrary code and obtain sensitive information. This is achieved via the id parameter to "news details.php" and "location details.php", and...

9.1CVSS7.8AI score0.02241EPSS
Exploits3References7
cvelist
cvelist
added 2024/06/12 12:0 a.m.42 views

CVE-2024-36840

SQL Injection vulnerability in Boelter Blue System Management v.1.3 allows a remote attacker to execute arbitrary code and obtain sensitive information via the id parameter to newsdetails.php and locationdetails.php; and the section parameter to services.php...

0.02241EPSS
Exploits3References6
osv
osv
added 2024/05/17 7:15 p.m.4 views

CVE-2024-5064

A vulnerability was found in PHPGurukul Online Course Registration System 3.1. It has been rated as critical. This issue affects some unknown processing of the file news-details.php. The manipulation of the argument nid leads to sql injection. The attack may be initiated remotely. The exploit has...

9.8CVSS6.8AI score0.00746EPSS
Exploits1References4
Rows per page
Query Builder