CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

89 matches found

CVE•added 2026/06/10 1:55 p.m.•20 views

CVE-2026-53474

Migration-planner is affected by a second-order SQL injection via uploads of RVTools .xlsx files. The flaw arises from improper input sanitization and causes malicious SQL embedded in a spreadsheet cell to execute when cluster names are processed, enabling arbitrary file reading on the host (pote...

9.6CVSS5.9AI score0.00298EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/06/10 1:55 p.m.•7 views

CVE-2026-53474 Migration-planner: second-order sql injection via rvtools upload

A flaw was found in migration-planner. A remote authenticated attacker could exploit this vulnerability by uploading a specially crafted RVTools .xlsx file. Due to improper input sanitization, malicious SQL embedded within a spreadsheet cell is executed when cluster names are processed. This SQL...

9.6CVSS5.8AI score0.00298EPSS

Exploits0References3

Packet Storm•added 2026/05/06 12:0 a.m.•60 views

📄 Hibernate ORM 5.6.15 SQL Injection

Hibernate ORM versions 5.6.15 and below suffer from a remote SQL injection vulnerability. CVE-2026-0603 Hibernate ORM Injection / Second-Order SQL Injection ★ CVE-2026-0603 Hibernate SQL Injection PoC ★ https://github.com/user-attachments/assets/2e7c3a89-e26f-48cd-af0b-8b82d32ce71f Overview...

8.3CVSS5.9AI score0.00606EPSS

Exploits1

NVD•added 2026/04/21 8:17 p.m.•2 views

CVE-2026-40871

mailcow: dockerized is an open source groupware/email suite based on docker. Versions prior to 2026-03b have a second-order SQL injection vulnerability in the quarantinecategory field via the Mailcow API. The /api/v1/add/mailbox endpoint stores quarantinecategory without validation or sanitizatio...

7.2CVSS0.09874EPSS

Exploits0References1

EUVD•added 2026/04/21 7:12 p.m.•2 views

EUVD-2026-24253

7.2CVSS5.9AI score0.09874EPSS

Exploits0References1

Vulnrichment•added 2026/04/21 7:12 p.m.•5 views

CVE-2026-40871 mailcow: dockerized vulnerable to Second Order SQL Injection in quarantine category via API

7.2CVSS5.9AI score0.09874EPSS

Exploits0References1

Cvelist•added 2026/04/21 7:12 p.m.•29 views

CVE-2026-40871 mailcow: dockerized vulnerable to Second Order SQL Injection in quarantine category via API

7.2CVSS0.09874EPSS

Exploits0References1

CVE•added 2026/04/21 7:12 p.m.•10 views

CVE-2026-40871

CVE-2026-40871 affects the mailcow: dockerized project. Versions prior to 2026-03b are vulnerable to a second-order SQL injection in the quarantine_category field exposed via the Mailcow API, specifically at the /api/v1/add/mailbox endpoint. The input is stored without validation and later used b...

7.2CVSS6.2AI score0.09874EPSS

Exploits0References1

GithubExploit•added 2026/04/20 2:7 p.m.•90 views

Exploit for CVE-2025-68999

CVE-2025-68999 Happy Addons for Elementor = 3.20.4 —...

8.5CVSS5.9AI score0.00253EPSS

Exploits2

CVE•added 2026/04/07 6:5 p.m.•5 views

CVE-2026-39319

ChurchCRM exposes a second-order SQL injection in /FundRaiserEditor.php prior to 7.1.0. An authenticated user with low privileges can inject via the iCurrentFundraiser PHP session parameter to read or modify database data. The issue is fixed in 7.1.0. CVSS v3.1 shows High impact (C/H/I/A) with Ne...

8.8CVSS6AI score0.00244EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/04/07 6:5 p.m.•4 views

CVE-2026-39319 ChurchCRM has a Second Order SQLI via FundRaiserEditor.php

ChurchCRM is an open-source church management system. Prior to 7.1.0, a second order SQL injection vulnerability was found in the endpoint /FundRaiserEditor.php in ChurchCRM. A user has to be authenticated but doesn't need any privileges. These users can inject arbitrary SQL statements through th...

8.8CVSS6AI score0.00244EPSS

Exploits0References1

ATTACKERKB•added 2026/04/07 6:5 p.m.•2 views

CVE-2026-39319

8.8CVSS6AI score0.00244EPSS

Exploits0References2Affected Software1

SUSE CVE•added 2026/04/06 11:24 p.m.•2 views

SUSE CVE-2026-34385

Fleet is open source device management software. Prior to 4.81.0, a second-order SQL injection vulnerability in Fleet's Apple MDM profile delivery pipeline could allow an attacker with a valid MDM enrollment certificate to exfiltrate or modify the contents of the Fleet database, including user...

8.6CVSS5.9AI score0.00197EPSS

Exploits0References3

RedhatCVE•added 2026/04/04 5:0 p.m.•6 views

CVE-2026-25773

UNSUPPORTED WHEN ASSIGNED Focalboard version 8.0 fails to sanitize category IDs before incorporating them into dynamic SQL statements when reordering categories. An attacker can inject a malicious SQL payload into the category id field, which is stored in the database and later executed unsanitiz...

8.1CVSS5.9AI score0.00309EPSS

Exploits0References1

Cvelist•added 2026/04/03 10:49 p.m.•13 views

CVE-2026-34934 PraisonAI: Second-Order SQL Injection in `get_all_user_threads`

PraisonAI is a multi-agent teams system. Prior to version 4.5.90, the getalluserthreads function constructs raw SQL queries using f-strings with unescaped thread IDs fetched from the database. An attacker stores a malicious thread ID via updatethread. When the application loads the thread list, t...

9.8CVSS0.00533EPSS

Exploits1References1

Vulnrichment•added 2026/04/03 10:49 p.m.•2 views

CVE-2026-34934 PraisonAI: Second-Order SQL Injection in `get_all_user_threads`

9.8CVSS5.9AI score0.00533EPSS

Exploits1References1

CVE•added 2026/04/03 10:49 p.m.•7 views

CVE-2026-34934

Summary: PraisonAI is affected by a second‑order SQL injection in the get_all_user_threads flow. The function builds raw SQL queries by interpolating unescaped thread IDs retrieved from the DB, enabling an attacker to inject via update_thread. When PraisonAI loads the thread list, the payload can...

9.8CVSS5.8AI score0.00533EPSS

Exploits1References1Affected Software1

EUVD•added 2026/04/03 3:30 p.m.•5 views

EUVD-2026-18651

8.1CVSS5.9AI score0.00309EPSS

Exploits0References2