Lucene search
K

27 matches found

Cvelist
Cvelist
added 2 days ago24 views

CVE-2026-50180 Langroid: SQLChatAgent _validate_query blocklist misses pg_read_file family enabling arbitrary file read

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.64.0, SQLChatAgent in langroid ships a validatequery defense-in-depth layer whose DANGEROUSSQLPATTERNS regex blocklist enumerates dangerous SQL primitives by specific function name. The list misses...

8.7CVSS0.00686EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/29 1:47 p.m.7 views

EUVD-2026-40114

phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote attackers to access the full contents of the uploaded-files database table by visiting any page of the application. The index model executes an unbounded SELECT query and embeds the comple...

8.7CVSS5.8AI score0.00365EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in SQLite3

A flaw was discovered in SQLite’s SELECT query functionality src/select.c. This flaw allows an attacker who is capable of executing SQL queries locally on the SQLite database to cause a denial of service or potentially lead to code execution by triggering a use-after-free. The most significant...

5.5CVSS7.3AI score0.00496EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-7667

Malicious code in bioql PyPI...

5.5CVSS6.8AI score0.00496EPSS
Exploits0References10
OSV
OSV
added 2024/03/06 11:6 a.m.28 views

BIT-SQLITE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS5.9AI score0.00496EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2021/07/01 12:0 a.m.28 views

EulerOS 2.0 SP9 : sqlite (EulerOS-SA-2021-2067)

According to the version of the sqlite package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on...

5.5CVSS6.9AI score0.00496EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/07/01 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2021-2067)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00496EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/07 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2021-1973)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00496EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/06/04 12:0 a.m.32 views

EulerOS Virtualization 2.9.1 : sqlite (EulerOS-SA-2021-1965)

According to the version of the sqlite package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL...

5.5CVSS6.9AI score0.00496EPSS
Exploits0References2
OSV
OSV
added 2021/03/23 5:15 p.m.38 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS3.7AI score
Exploits0References8
NVD
NVD
added 2021/03/23 5:15 p.m.28 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS0.00496EPSS
Exploits0References8
Prion
Prion
added 2021/03/23 5:15 p.m.33 views

Design/Logic Flaw

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

2.1CVSS5.9AI score0.00496EPSS
Exploits0References8Affected Software7
CVE
CVE
added 2021/03/23 12:0 a.m.185 views

CVE-2021-20227

CVE-2021-20227 : SQLite contains a flaw in the SELECT implementation (src/select.c) that can trigger a use-after-free when an attacker can run SQL locally. This may lead to a denial of service and, in some cases, possible code execution. The Astra Linux security bulletin mirrors this SQLite issue...

5.5CVSS5.9AI score0.00496EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2021/03/23 12:0 a.m.33 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

6.4AI score0.00496EPSS
Exploits0References8
Exploit DB
Exploit DB
added 2021/03/23 12:0 a.m.448 views

MyBB 1.8.25 - Poll Vote Count SQL Injection

Exploit Title: MyBB 1.8.25 - Poll Vote Count SQL Injection Exploit Author: SivertPL [email protected] Date: 20.03.2021 Description: Lack of sanitization in the "votes" parameter in "Edit Poll" causes a second-order semi-blind SQL Injection that is triggered when performing a "Move/Copy"...

8.8CVSS7.5AI score0.04201EPSS
Exploits5
Debian CVE
Debian CVE
added 2021/03/23 12:0 a.m.33 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS6.9AI score0.00496EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/03/23 12:0 a.m.43 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS6.1AI score0.00496EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/02/05 12:0 a.m.56 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS6.8AI score0.00496EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2021/02/04 3:22 p.m.29 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

6.1CVSS1.5AI score0.00496EPSS
Exploits0References4
Prion
Prion
added 2019/06/03 7:29 p.m.20 views

Sql injection

A SQL injection vulnerability exists in all Orpak SiteOmat versions prior to 2017-09-25. The vulnerability is in the login page, where the authentication validation process contains an insecure SELECT query. The attack allows for authentication bypass...

7.5CVSS9.8AI score0.04032EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder