Lucene search
K

975 matches found

Vulnrichment
Vulnrichment
added 2026/01/27 12:0 a.m.3 views

CVE-2025-69563

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via the Password parameter...

5.9AI score0.00442EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/01/27 12:0 a.m.3 views

CVE-2025-69564

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php via the Name, Address, email, UserName, Password, confirmpassword, Role, Branch, and Activate parameters...

5.9AI score0.00402EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/27 12:0 a.m.21 views

CVE-2025-69563

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via the Password parameter...

0.00442EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.9 views

PT-2026-4951

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via the Password parameter...

5.9AI score0.00442EPSS
Exploits1References3
EUVD
EUVD
added 2026/01/27 12:0 a.m.4 views

EUVD-2025-206392

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via the Password parameter...

9.8CVSS5.9AI score0.00442EPSS
Exploits1References2
CVE
CVE
added 2026/01/27 12:0 a.m.15 views

CVE-2025-69563

The provided data confirms CVE-2025-69563 affects code-projects Mobile Shop Management System 1.0 and is due to a SQL Injection in /ExLogin.php through the Password parameter. The vulnerability is described as high impact (C/H/I/A) with CVSS v3.1 base score 9.8 (CRITICAL), attack vector Network, ...

9.8CVSS5.9AI score0.00442EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/22 5:34 p.m.5 views

CVE-2021-47846

Digital Crime Report Management System 1.0 contains a critical SQL injection vulnerability affecting multiple login pages that allows unauthenticated attackers to bypass authentication. Attackers can exploit the vulnerability by sending crafted SQL injection payloads in email and password...

8.8CVSS5.9AI score0.00387EPSS
Exploits0References1
NVD
NVD
added 2026/01/21 6:16 p.m.3 views

CVE-2021-47846

Digital Crime Report Management System 1.0 contains a critical SQL injection vulnerability affecting multiple login pages that allows unauthenticated attackers to bypass authentication. Attackers can exploit the vulnerability by sending crafted SQL injection payloads in email and password...

8.8CVSS0.00387EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/21 5:27 p.m.4 views

EUVD-2026-3637

Digital Crime Report Management System 1.0 contains a critical SQL injection vulnerability affecting multiple login pages that allows unauthenticated attackers to bypass authentication. Attackers can exploit the vulnerability by sending crafted SQL injection payloads in email and password...

8.8CVSS5.9AI score0.00387EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.10 views

PT-2026-2430

Name of the Vulnerable Software and Affected Versions WorkOrder CMS version 0.1.0 Description WorkOrder CMS version 0.1.0 has a SQL injection issue. An unauthenticated attacker can bypass login by manipulating the username and password parameters. Attackers can inject malicious SQL queries, such ...

8.8CVSS8AI score0.00296EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/10 5:40 a.m.4 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9.1CVSS8.2AI score0.0114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.8 views

CVE-2023-40834

OpenCart CMS v4.0.2.2 was discovered to lack a protective mechanism on its login page against excessive login attempts, allowing unauthenticated attackers to gain access to the application via a brute force attack to the password parameter...

9.8CVSS7.5AI score0.01093EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.5 views

CVE-2022-38637

Hospital Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities via the Username and Password parameters on the Login page...

9.8CVSS8.5AI score0.04552EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:50 a.m.6 views

CVE-2022-37153

An issue was discovered in Artica Proxy 4.30.000000. There is a XSS vulnerability via the password parameter in /fw.login.php...

6.1CVSS6.2AI score0.01393EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:35 a.m.12 views

CVE-2024-34308

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a stack overflow via the password parameter in the function urldecode...

8.8CVSS8AI score0.0056EPSS
Exploits0References1
NVD
NVD
added 2026/01/08 5:15 p.m.7 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9.1CVSS0.0114EPSS
Exploits0References1
OSV
OSV
added 2026/01/08 5:15 p.m.3 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9.1CVSS6.4AI score0.0114EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 4:18 p.m.3 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9CVSS7.8AI score0.0114EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 4:18 p.m.21 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9CVSS0.0114EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/04 12:0 a.m.4 views

Code-Projects Online Product Reservation System SQL注入漏洞

Code-Projects Online Product Reservation System is a Code-Projects open source online product reservation system. A SQL injection vulnerability exists in Code-Projects Online Product Reservation System version 1.0, which originates from a misuse of the parameters emailadd/pass in the file...

9.8CVSS7.7AI score0.00374EPSS
Exploits1References6
Rows per page
Query Builder