CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

CNVD•added 2025/10/15 12:0 a.m.•1 views

Project Monitoring System useredit.php File SQL Injection Vulnerability

Project Monitoring System is a project monitoring system. Project Monitoring System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter uid in the file /useredit.php. An attacker can exploit this vulnerabilit...

9.8CVSS8.3AI score0.00042EPSS

Exploits1References1

RedhatCVE•added 2025/10/11 9:22 p.m.•1 views

CVE-2025-11585

A vulnerability was found in code-projects Project Monitoring System 1.0. The impacted element is an unknown function of the file /useredit.php. The manipulation of the argument uid results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

9.8CVSS6.9AI score0.00042EPSS

Exploits1References1

NVD•added 2025/10/10 9:16 p.m.•1 views

CVE-2025-11585

9.8CVSS0.00042EPSS

Exploits1References5

OSV•added 2025/10/10 9:16 p.m.•0 views

CVE-2025-11585

9.8CVSS5.7AI score0.00042EPSS

Exploits1References5

CVE•added 2025/10/10 9:2 p.m.•6 views

CVE-2025-11585

CVE-2025-11585 affects code-projects Project Monitoring System 1.0. The vulnerability is a SQL injection in the /useredit.php script caused by unsafely handling the uid parameter. Exploitation is remote and the exploit/public PoC has been reported in multiple sources (CNVD, RH, CNNVD, CVE referen...

9.8CVSS6.7AI score0.00042EPSS

Exploits1References5Affected Software1

EUVD•added 2025/10/10 9:2 p.m.•3 views

EUVD-2025-33780

7.5CVSS6.5AI score0.00042EPSS

Exploits1References7

Vulnrichment•added 2025/10/10 9:2 p.m.•2 views

CVE-2025-11585 code-projects Project Monitoring System useredit.php sql injection

7.5CVSS6.7AI score0.00042EPSS

Exploits1References5

CNNVD•added 2025/10/10 12:0 a.m.•2 views

Code-Projects Project Monitoring System SQL注入漏洞

9.8CVSS8.2AI score0.00042EPSS

Exploits1References5

Positive Technologies•added 2025/10/10 12:0 a.m.•3 views

PT-2025-41605

Name of the Vulnerable Software and Affected Versions code-projects Project Monitoring System version 1.0 Description A SQL injection issue exists in the Project Monitoring System 1.0. The flaw is located in an unknown function within the /useredit.php script. Manipulation of the uid parameter...

7.5CVSS7.7AI score0.00042EPSS

Exploits1References11

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-31436

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00046EPSS

Exploits1References6

RedhatCVE•added 2025/09/29 11:44 p.m.•3 views

CVE-2025-11124

A vulnerability has been found in code-projects Project Monitoring System 1.0. Affected is an unknown function of the file /onlineJobSearchEngine/postjob.php. Such manipulation of the argument txtapplyto leads to cross site scripting. The attack may be launched remotely. The exploit has been...

5.1CVSS5.6AI score0.00044EPSS

Exploits1References1

CNVD•added 2025/09/29 12:0 a.m.•2 views

Project Monitoring System login.php File SQL Injection Vulnerability

Project Monitoring System is a project monitoring system. Project Monitoring System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameters username/password in the file /login.php. An attacker can exploit this...

9.8CVSS8.3AI score0.00046EPSS

Exploits1References1

CNVD•added 2025/09/29 12:0 a.m.•2 views

Project Monitoring System Cross-Site Scripting Vulnerability

Project Monitoring System is a project monitoring system. Project Monitoring System suffers from a cross-site scripting vulnerability that stems from the /onlineJobSearchEngine/postjob.php file not adequately filtering the txtapplyto parameter. No details of the vulnerability are available at thi...

5.4CVSS6.3AI score0.00044EPSS

Exploits1References1

OSV•added 2025/09/28 11:15 p.m.•1 views

CVE-2025-11124

5.4CVSS4.2AI score

Exploits0References6

NVD•added 2025/09/28 11:15 p.m.•8 views

CVE-2025-11124

5.4CVSS0.00044EPSS

Exploits1References6

Vulnrichment•added 2025/09/28 11:2 p.m.•8 views

CVE-2025-11124 code-projects Project Monitoring System postjob.php cross site scripting

5.1CVSS5.4AI score0.00044EPSS

Exploits1References6

RedhatCVE•added 2025/09/28 6:48 p.m.•1 views

CVE-2025-11074

A flaw has been found in code-projects Project Monitoring System 1.0. The impacted element is an unknown function of the file /login.php. This manipulation of the argument username/password causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

7.5CVSS6.8AI score0.00046EPSS

Exploits1References1

Positive Technologies•added 2025/09/28 12:0 a.m.•9 views

PT-2025-39795

Name of the Vulnerable Software and Affected Versions code-projects Project Monitoring System version 1.0 Description A cross site scripting issue exists due to manipulation of the txtapplyto argument. The issue is located in the file /onlineJobSearchEngine/postjob.php within an unknown function...

5.1CVSS3.9AI score0.00044EPSS

Exploits1References11

NVD•added 2025/09/27 7:15 p.m.•3 views

CVE-2025-11074

9.8CVSS0.00046EPSS

Exploits1References5

OSV•added 2025/09/27 7:15 p.m.•1 views

CVE-2025-11074

9.8CVSS5.7AI score

Exploits0References5

Rows per page