Lucene search
K

8281 matches found

CNVD
CNVD
added 2025/03/27 12:0 a.m.2 views

Bank Locker Management System search-locker-details.php File SQL Injection Vulnerability

Bank Locker Management System is a bank locker management system. Bank Locker Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally-entered SQL statements in the searchinput parameter of /search-locker-details.php. An attacker can exploi...

9.8CVSS8.3AI score0.00485EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.3 views

PT-2025-13083 · Unknown · Vimeotheque

Name of the Vulnerable Software and Affected Versions: Constantin Boiangiu Vimeotheque versions n/a through 2.3.4.2 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

8.5CVSS9.5AI score0.00412EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.3 views

WeGIA SQL注入漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a SQL injection vulnerability that stems from a lack of validation of the idfuncionario parameter against externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL commands to steal...

10CVSS8.2AI score0.00605EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/03/26 12:0 a.m.6 views

Vulnerability of the Premium Package: Selling Digital Products securely through the WordPress content management system. This vulnerability is related to the lack of measures taken to protect the SQL query structure, allowing attackers to execute arbitrary SQL code.

The vulnerability of the Premium Package plugin – enabling secure sales of digital products through a WordPress website’s content management system – is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker who operates remotely t...

7.6CVSS8.2AI score0.00931EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/03/25 12:0 a.m.4 views

PHPGurukul Old Age Home Management System 注入漏洞

PHPGurukul Old Age Home Management System is a nursing home management system from PHPGurukul. An injection vulnerability exists in PHPGurukul Old Age Home Management System version 1.0, which originates from an SQL injection in the /admin/add-services.php file, and may be attacked remotely...

9.8CVSS7.9AI score0.00487EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/03/25 12:0 a.m.4 views

PHPGurukul Old Age Home Management System 注入漏洞

PHPGurukul Old Age Home Management System is a nursing home management system from PHPGurukul. An injection vulnerability exists in PHPGurukul Old Age Home Management System version 1.0, which originates from an SQL injection in the /admin/bwdates-report-details.php file, which may be attacked...

9.8CVSS7.9AI score0.00487EPSS
Exploits1References7
Patchstack
Patchstack
added 2025/03/24 8:44 a.m.6 views

WordPress Automation By Autonami plugin <= 3.5.1 - Unauthenticated SQL Injection via 'automationId' vulnerability

Unauthenticated SQL Injection via 'automationId' vulnerability discovered by mikemyers in WordPress Plugin FunnelKit Automations versions = 3.5.1...

7.5CVSS9.5AI score0.0042EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.3 views

PHPGurukul Bank Locker Management System 注入漏洞

Bank Locker Management System is a bank locker management system. Bank Locker Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the lockersize parameter of the edit-locker.php?ltid=6 file. An attacker c...

9.8CVSS8.2AI score0.00481EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.3 views

WordPress plugin dokme SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

7.6CVSS9.1AI score0.00516EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.3 views

WordPress plugin WP Profitshare SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin WP...

7.6CVSS9.2AI score0.00516EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.21 views

The vulnerability of the VMmanager 6 virtualization tool, related to the lack of protective measures for the SQL query structure, allows attackers to execute arbitrary SQL queries against the database.

The vulnerability of VMmanager 6’s virtualization mechanism is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries against the database remotely...

9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.4 views

The vulnerability of the VMmanager 6 virtualization tool, related to the lack of protective measures for the SQL query structure, allows attackers to execute arbitrary SQL queries against the database.

The vulnerability of VMmanager 6’s virtualization mechanism is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries against the database remotely...

9CVSS5.9AI score
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.3 views

PHPGurukul Bank Locker Management System 注入漏洞

Bank Locker Management System is a bank locker management system. Bank Locker Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally-entered SQL statements in the searchinput parameter of the search-report-details.php file. An attacker ca...

9.8CVSS8.2AI score0.00481EPSS
Exploits1References5
OSV
OSV
added 2025/03/23 9:15 p.m.2 views

CVE-2025-2663

A vulnerability has been found in PHPGurukul Bank Locker Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /search-locker-details.php. The manipulation of the argument searchinput leads to sql injection. The attack can be...

9.8CVSS5.8AI score0.00485EPSS
Exploits1References5
OSV
OSV
added 2025/03/23 4:15 p.m.2 views

CVE-2025-2654

A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/services/manageservice.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...

9.8CVSS5.8AI score0.00527EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.3 views

Projectworlds Online Time Table Generator 注入漏洞

Projectworlds Online Time Table Generator is an online time table generator from Projectworlds India. An injection vulnerability exists in Projectworlds Online Time Table Generator version 1.0, which stems from the fact that incorrect manipulation of parameter e can lead to SQL injection...

9.8CVSS7.9AI score0.00481EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.2 views

SourceCodester AC Repair and Services System 注入漏洞

SourceCodester AC Repair and Services System is a SourceCodester open source air conditioning repair and services system. An injection vulnerability exists in SourceCodester AC Repair and Services System version 1.0, which stems from the fact that incorrect manipulation of a parameter ID can lead...

9.8CVSS8AI score0.00527EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.3 views

PHPGurukul Bank Locker Management System 安全漏洞

Bank Locker Management System is a bank locker management system. Bank Locker Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally-entered SQL statements in the searchinput parameter of /search-locker-details.php. An attacker can exploi...

9.8CVSS8.2AI score0.00485EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.3 views

PHPGurukul Doctor Appointment Management System 注入漏洞

Doctor Appointment Management System is a doctor appointment management system. Doctor Appointment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter searchdata of /check-appointment.php. A...

9.8CVSS8.2AI score0.00467EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.3 views

Projectworlds Online Time Table Generator 注入漏洞

Projectworlds Online Time Table Generator is an online time table generator from Projectworlds India. An injection vulnerability exists in Projectworlds Online Time Table Generator version 1.0, which stems from the fact that incorrect manipulation of the parameter course can lead to SQL injection...

8.8CVSS7AI score0.00526EPSS
Exploits1References4
Rows per page
Query Builder