Lucene search
K

12 matches found

NVD
NVD
added 2026/02/07 12:15 a.m.5 views

CVE-2020-37163

QuickDate 1.3.2 contains a SQL injection vulnerability that allows remote attackers to manipulate database queries through the 'located' parameter in the findmatches endpoint. Attackers can inject UNION-based SQL statements to extract database information including user credentials, database name...

8.8CVSS0.0041EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.6 views

QuickDate SQL注入漏洞

QuickDate is a Python time processing library developed by QuickDate Inc. Version 1.3.2 of QuickDate contains a SQL injection vulnerability. This vulnerability stems from the unvalidated parameter “located” in the “findmatches” endpoint, which may lead to SQL injection attacks...

8.8CVSS5.8AI score0.0041EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/06 11:14 p.m.4 views

CVE-2020-37163 QuickDate 1.3.2 - SQL Injection

QuickDate 1.3.2 contains a SQL injection vulnerability that allows remote attackers to manipulate database queries through the 'located' parameter in the findmatches endpoint. Attackers can inject UNION-based SQL statements to extract database information including user credentials, database name...

8.8CVSS5.9AI score0.0041EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/06 11:14 p.m.6 views

CVE-2020-37163

QuickDate 1.3.2 contains a SQL injection vulnerability that allows remote attackers to manipulate database queries through the 'located' parameter in the findmatches endpoint. Attackers can inject UNION-based SQL statements to extract database information including user credentials, database name...

8.8CVSS5.7AI score0.0041EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/06 11:14 p.m.34 views

CVE-2020-37163 QuickDate 1.3.2 - SQL Injection

QuickDate 1.3.2 contains a SQL injection vulnerability that allows remote attackers to manipulate database queries through the 'located' parameter in the findmatches endpoint. Attackers can inject UNION-based SQL statements to extract database information including user credentials, database name...

8.8CVSS0.0041EPSS
Exploits0References3
CVE
CVE
added 2026/02/06 11:14 p.m.10 views

CVE-2020-37163

CVE-2020-37163 – QuickDate 1.3.2 suffers a SQL injection in the find_matches endpoint via the '_located' parameter, enabling UNION-based payloads to exfiltrate database information (credentials, DB name, system version). Evidence across sources confirms the vulnerable component and location of in...

8.8CVSS5.7AI score0.0041EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.6 views

PT-2026-6829

Name of the Vulnerable Software and Affected Versions QuickDate version 1.3.2 Description The software contains a SQL injection issue that allows remote attackers to manipulate database queries. This is achieved through the located parameter in the /find matches API endpoint. Attackers can inject...

8.8CVSS5.7AI score0.0041EPSS
Exploits0References5
CNVD
CNVD
added 2020/02/12 12:0 a.m.1 views

QuickDate SQL Injection Vulnerability

QuickDate is a dating personals social platform. QuickDate suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database information...

7.8AI score
Exploits0References1
0day.today
0day.today
added 2020/02/11 12:0 a.m.541 views

QuickDate 1.3.2 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: QuickDate 1.3.2 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://quickdatescript.com/ Version: 1.3.2 Tested on: Linux CVE: N/A POC: 1 POST /findmatches HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 X11;...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/02/10 12:0 a.m.744 views

QuickDate 1.3.2 SQL Injection

Exploit Title: QuickDate 1.3.2 - SQL Injection Dork: N/A Date: 2020-02-07 Exploit Author: Ihsan Sencan Vendor Homepage: https://quickdatescript.com/ Version: 1.3.2 Tested on: Linux CVE: N/A POC: 1 POST /findmatches HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 X11; Linux x8664; rv:55.0...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2020/02/07 12:0 a.m.72 views

QuickDate 1.3.2 - SQL Injection

QuickDate 1.3.2 - SQL Injection Exploit Title: QuickDate 1.3.2 - SQL Injection Dork: N/A Date: 2020-02-07 Exploit Author: Ihsan Sencan Vendor Homepage: https://quickdatescript.com/ Version: 1.3.2 Tested on: Linux CVE: N/A POC: 1 POST /findmatches HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2020/02/07 12:0 a.m.499 views

QuickDate 1.3.2 - SQL Injection

Exploit Title: QuickDate 1.3.2 - SQL Injection Dork: N/A Date: 2020-02-07 Exploit Author: Ihsan Sencan Vendor Homepage: https://quickdatescript.com/ Version: 1.3.2 Tested on: Linux CVE: N/A POC: 1 POST /findmatches HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 X11; Linux x8664; rv:55.0...

7.4AI score
Exploits0
Rows per page
Query Builder