CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

150 matches found

OSV•added 2025/10/21 8:20 p.m.•1 views

CVE-2025-61750

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Query. Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTool...

4.3CVSS5.8AI score0.00035EPSS

Exploits0References1

Cvelist•added 2025/10/17 7:32 p.m.•8 views

CVE-2025-11911 Shenzhen Ruiming Technology Streamax Crocus DeviceFault.do Query sql injection

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts the function Query of the file /DeviceFault.do?Action=Query. The manipulation of the argument sortField results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

6.5CVSS0.00044EPSS

Exploits1References4

CVE•added 2025/10/17 7:32 p.m.•6 views

CVE-2025-11910

CVE-2025-11910 affects Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The vulnerability lies in the function Query of the file /MemoryState.do?Action=Query, where manipulating the argument orderField enables a SQL injection. The issue is exploitable remotely, and public exploit information h...

8.8CVSS6.7AI score0.00044EPSS

Exploits1References4Affected Software1

CNNVD•added 2025/10/15 12:0 a.m.•1 views

WordPress plugin Dynamically Display Posts SQL注入漏洞

WordPress Dynamically Display Posts plugin is a WordPress plugin for creating a store locator page in your website that displays information about nearby stores via Google Maps. WordPress Dynamically Display Posts plugin suffers from a SQL injection vulnerability that stems from a lack of...

7.5CVSS7.9AI score0.001EPSS

Exploits0References3