CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16789 matches found

RedhatCVE•added 2026/01/09 10:54 a.m.•6 views

CVE-2022-23335

Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in languagegeneral.class.php via doModifyParameter...

9.8CVSS8.3AI score0.00513EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:53 a.m.•5 views

CVE-2022-23898

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml...

9.8CVSS8.2AI score0.75534EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:53 a.m.•5 views

CVE-2022-33058

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletemessage...

7.2CVSS8.3AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:53 a.m.•6 views

CVE-2022-33094

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/job/map...

7.5CVSS8.3AI score0.00246EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:53 a.m.•5 views

CVE-2022-33049

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/?page=user/manageuser...

7.2CVSS8.3AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:53 a.m.•6 views

CVE-2022-33095

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/jobfairol/resumelist...

7.5CVSS8.3AI score0.00246EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:53 a.m.•7 views

CVE-2022-33059

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletetrain...

7.2CVSS8.3AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:52 a.m.•7 views

CVE-2022-33060

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteschedule...

7.2CVSS8.3AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:52 a.m.•5 views

CVE-2022-42250

Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/inquiries/viewdetails.php?id=...

7.2CVSS7.9AI score0.00346EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:52 a.m.•7 views

CVE-2022-33042

Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/viewdetails.php...

7.2CVSS8.3AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:52 a.m.•7 views

CVE-2022-42122

A SQL injection vulnerability in the Friendly Url module in Liferay Portal 7.3.7, and Liferay DXP 7.3 fix pack 2 through update 4 allows attackers to execute arbitrary SQL commands via a crafted payload injected into the title field of a friendly URL...

9.8CVSS8.6AI score0.00815EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:51 a.m.•6 views

CVE-2022-42984

WoWonder Social Network Platform 4.1.4 was discovered to contain a SQL injection vulnerability via the offset parameter at requests.php?f=search=recipients...

9.8CVSS8.3AI score0.00627EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:51 a.m.•7 views

CVE-2022-42990

Food Ordering Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /foms/all-orders.php?status=Cancelled%20by%20Customer...

7.2CVSS8.3AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:50 a.m.•8 views

CVE-2022-37203

JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection...

9.8CVSS7.5AI score0.01107EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:49 a.m.•3 views

CVE-2022-37773

An authenticated SQL Injection vulnerability in the statistics page /statistics/retrieve of Maarch RM 2.8, via the filter parameter, allows the complete disclosure of all databases...

6.5CVSS7.9AI score0.00635EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:48 a.m.•5 views

CVE-2022-31971

ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/viewresponse=...

7.2CVSS8.1AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:48 a.m.•7 views

CVE-2022-31962

Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/admin/incidents/viewincident.php?id=...

9.8CVSS8.1AI score0.00264EPSS

Exploits1References1