CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

78 matches found

Cvelist•added 2026/06/15 12:0 a.m.•27 views

CVE-2026-38812

RuoYi v4.8.2 is vulnerable to SQL Injection via the /tool/gen/createTable endpoint. The issue affects the code generation module and may allow an authenticated attacker with administrative privileges to access sensitive database information...

0.00393EPSS

Exploits1References1

Positive Technologies•added 2026/03/22 12:0 a.m.•5 views

PT-2026-27036

Name of the Vulnerable Software and Affected Versions yangzongzhuan RuoYi versions up to 4.8.2 Description A security issue exists in yangzongzhuan RuoYi, specifically within the Quartz Job Handler component. The issue involves code injection stemming from manipulation of the invokeTarget argumen...

5.8CVSS5.8AI score0.00316EPSS

Exploits0References9

CNNVD•added 2026/01/23 12:0 a.m.•6 views

Ruoyi security vulnerabilities

Ruoyi is a backend management system developed by Ruoyi’s individual developer. The Ruoyi v4.8.2 version has a security vulnerability, which stems from improper access control in the update function. This vulnerability could allow unauthorized attackers to modify data beyond its intended scope...

9.1CVSS5.8AI score0.00382EPSS

Exploits1References4

Positive Technologies•added 2025/12/23 12:0 a.m.•4 views

PT-2025-52769

Name of the Vulnerable Software and Affected Versions RuoYi versions prior to 4.7.9 Description A SQL Injection issue exists in RuoYi versions prior to 4.7.9. This allows a remote attacker to execute arbitrary code through the createTable function located in SqlUtil.java. The vulnerability is...

10CVSS8.3AI score0.00587EPSS

Exploits2References9

NVD•added 2025/12/18 2:15 a.m.•11 views

CVE-2025-14856

A security vulnerability has been detected in yproject RuoYi up to 4.8.1. The affected element is an unknown function of the file /monitor/cache/getnames. Such manipulation of the argument fragment leads to code injection. The attack can be executed remotely. The exploit has been disclosed public...

8.8CVSS0.00379EPSS

Exploits1References5