CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CNNVD•added 2026/02/26 12:0 a.m.•6 views

SIMPLE.ERP SQL注入漏洞

SIMPLE.ERP is an e-commerce platform provided by the SIMPLE company. Versions of SIMPLE.ERP prior to [email protected] contained a SQL injection vulnerability. This vulnerability stemmed from the lack of input validation in the search function, which could lead to SQL injection attacks...

8.6CVSS5.9AI score0.00307EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-7550

Malware in sbrugna...

6.1CVSS6.3AI score0.00947EPSS

Exploits1References3

Vulnrichment•added 2025/06/10 12:0 a.m.•4 views

CVE-2024-41503

Jetimob Plataforma Imobiliaria 20240627-0 is vulnerable to Cross Site Scripting XSS in the field "Ttulo" title inside the filter Save option in the "Busca" search function...

6.2AI score0.00232EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 8:36 a.m.•5 views

CVE-2024-33748

Cross-site scripting XSS vulnerability in the search function in Maven net.mingsoft MS Basic 2.1.13.4 and earlier...

4.1CVSS6AI score0.0036EPSS

Exploits0References1

Snyk•added 2025/03/20 12:32 p.m.•2 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the search functionality. An attacker can execute arbitrary JavaScript code by injecting malicious scripts into user inputs. This can lead to unauthorized actions such as stealing session cookies, redirectin...

6.1CVSS5.5AI score0.00491EPSS

Exploits1References2

CNNVD•added 2024/05/06 12:0 a.m.•3 views

Roothub 安全漏洞

Roothub is a forum system developed using SSM and MySQL. A security vulnerability exists in Roothub v2.6, which was discovered to contain an SQL injection vulnerability via the "s" parameter in the search function...

6.3CVSS8.3AI score0.00329EPSS

Exploits0References2

CNNVD•added 2023/09/08 12:0 a.m.•3 views

Enhancesoft osTicket SQL Injection Vulnerability

Enhancesoft osTicket is an open source ticketing system from Enhancesoft, Inc. A security vulnerability exists in Enhancesoft osTicket v1.15.6, which originates from an SQL injection vulnerability in the Search function of the tickets.php page, allowing an authenticated attacker to execute...

6.5CVSS8.4AI score0.02808EPSS

Exploits1References4

CNNVD•added 2022/11/30 12:0 a.m.•4 views

perfSONAR 跨站请求伪造漏洞

perfSONAR is a widely deployed test and measurement infrastructure used by scientific networks and facilities around the world to monitor and ensure network performance. A security vulnerability exists in perfSONAR versions v4.x through v4.4.5 that stems from the inclusion of cross-site request...

4.3CVSS5AI score0.01991EPSS

Exploits4References7

Tenable Nessus•added 2020/06/25 12:0 a.m.•65 views

Microsoft SharePoint Server 2019 < 16.0.10359.20000 Multiple Vulnerabilities

According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application...

8.8CVSS7.4AI score0.15134EPSS

Exploits1References24

Tenable Nessus•added 2020/06/25 12:0 a.m.•18 views

Microsoft SharePoint Server 2013 < 15.0.5241.1000 Multiple Vulnerabilities

8.8CVSS7.4AI score0.15134EPSS

Exploits1References24

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by