CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

RedhatCVE•added 2026/03/31 4:59 a.m.•0 views

CVE-2026-29953

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

7.4CVSS6AI score0.00034EPSS

Exploits1References1

RedhatCVE•added 2026/03/31 4:59 a.m.•3 views

CVE-2026-33643

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go...

7.4CVSS6AI score0.0004EPSS

Exploits1References1

EUVD•added 2026/03/30 6:31 p.m.•2 views

EUVD-2026-17137

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go...

7.4CVSS6AI score0.0004EPSS

Exploits1References3

EUVD•added 2026/03/30 6:31 p.m.•0 views

EUVD-2026-17131

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

7.4CVSS6AI score0.00034EPSS

Exploits1References3

NVD•added 2026/03/30 4:16 p.m.•2 views

CVE-2026-33643

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go...

7.4CVSS0.0004EPSS

Exploits1References2

NVD•added 2026/03/30 4:16 p.m.•0 views

CVE-2026-29953

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

7.4CVSS0.00034EPSS

Exploits1References2

Positive Technologies•added 2026/03/30 12:0 a.m.•1 views

PT-2026-29054

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go...

6AI score0.0004EPSS

Exploits1References3

Cvelist•added 2026/03/30 12:0 a.m.•18 views

CVE-2026-29953

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

0.00034EPSS

Exploits1References2

ATTACKERKB•added 2026/03/30 12:0 a.m.•0 views

CVE-2026-29953

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

7.4CVSS6AI score0.00034EPSS

Exploits1References3

Vulnrichment•added 2026/03/30 12:0 a.m.•0 views

CVE-2026-33643

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go...

6AI score0.0004EPSS

Exploits1References2

Positive Technologies•added 2026/03/30 12:0 a.m.•1 views

PT-2026-29052

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

6AI score0.00034EPSS

Exploits1References3

ATTACKERKB•added 2026/03/30 12:0 a.m.•0 views

CVE-2026-33643

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go...

7.4CVSS6AI score0.0004EPSS

Exploits1References3

CNNVD•added 2026/03/30 12:0 a.m.•3 views

SchemaHero 安全漏洞

SchemaHero is an open-source database schema management tool developed by SchemaHero. Version 0.23.0 of SchemaHero contains a security vulnerability. This vulnerability stems from improper handling of the column parameter in the mysqlColumnAsInsert function located in the...

7.4CVSS5.8AI score0.0004EPSS

Exploits1References3

CVE•added 2026/03/30 12:0 a.m.•2 views

CVE-2026-29953

CVE-2026-29953 corresponds to a SQL Injection vulnerability in SchemaHero 0.23.0. The issue is triggered via the column parameter to the columnAsInsert function in plugins/postgres/lib/column.go. The vulnerability is evidenced across multiple feeds (Red Hat, CIRCL, NVD, CVE records) with consiste...

7.4CVSS6AI score0.00034EPSS

Exploits1References2Affected Software1

CVE•added 2026/03/30 12:0 a.m.•3 views

CVE-2026-33643

CVE-2026-33643 affects SchemaHero 0.23.0 with a SQL Injection flaw in the MySQL plugin path: the column.go processing in plugins/mysql/lib/column.go improperly handles the column parameter, allowing malicious input to alter table schema. Connected sources also describe similar risks in the Postgr...

7.4CVSS6AI score0.0004EPSS

Exploits1References2Affected Software1

CNNVD•added 2026/03/30 12:0 a.m.•2 views

SchemaHero 安全漏洞

SchemaHero is an open-source database schema management tool developed by SchemaHero. Version 0.23.0 of SchemaHero contains a security vulnerability. This vulnerability stems from the improper handling of the column parameter in the columnAsInsert function within the column.go file, which may lea...

7.4CVSS5.8AI score0.00034EPSS

Exploits1References3

Vulnrichment•added 2026/03/30 12:0 a.m.•1 views

CVE-2026-29953

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert function in file plugins/postgres/lib/column.go...

6AI score0.00034EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by