Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

126 matches found

NVD
NVDadded 2026/05/05 3:16 a.m.4 views

CVE-2026-6696

The Zingaya Click-to-Call plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'email', 'firstname', 'lastname', and 'phone' parameters on the plugin's sign-up admin page in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output...

6.1CVSS0.00113EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/05/05 12:0 a.m.4 views

PT-2026-36957

Name of the Vulnerable Software and Affected Versions Zingaya Click-to-Call versions prior to 1.1 Description Insufficient input sanitization and output escaping in the sign-up admin page allow unauthenticated attackers to inject arbitrary web scripts. This occurs via the 'email', 'first name',...

6.1CVSS6AI score0.00113EPSS
Exploits0References12
NVD
NVDadded 2026/03/12 8:16 a.m.1 views

CVE-2026-4014

A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the component Registration. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of the attack is...

9.8CVSS0.00039EPSS
Exploits1References5
OSV
OSVadded 2026/03/08 3:15 p.m.0 views

CVE-2026-3744

A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

9.8CVSS5.7AI score0.00065EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2026/03/08 3:2 p.m.2 views

CVE-2026-3744 code-projects Student Web Portal signup.php valreg_passwdation sql injection

A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

7.5CVSS5.8AI score0.00065EPSS
Exploits1References6
EUVD
EUVDadded 2026/02/25 6:31 a.m.2 views

EUVD-2026-8618

A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impacts an unknown function of the file /signup.php. This manipulation of the argument Username causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9.8CVSS5.4AI score0.00039EPSS
Exploits1References6
NVD
NVDadded 2026/02/25 5:17 a.m.4 views

CVE-2026-3148

A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impacts an unknown function of the file /signup.php. This manipulation of the argument Username causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9.8CVSS0.00039EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/02/25 4:2 a.m.4 views

CVE-2026-3148

A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impacts an unknown function of the file /signup.php. This manipulation of the argument Username causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9.8CVSS5.4AI score0.00039EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2026/01/13 11:15 p.m.1 views

CVE-2021-47750

YouPHPTube = 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they...

6.1CVSS5.5AI score
Exploits0References3
NVD
NVDadded 2026/01/13 11:15 p.m.1 views

CVE-2021-47750

YouPHPTube = 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they...

6.1CVSS0.00057EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/01/13 10:56 p.m.19 views

CVE-2021-47750 YouPHPTube <= 7.8 - Cross-Site Scripting

YouPHPTube = 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they...

6.1CVSS0.00057EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2026/01/13 10:56 p.m.2 views

CVE-2021-47750 YouPHPTube <= 7.8 - Cross-Site Scripting

YouPHPTube = 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they...

6.1CVSS6.2AI score0.00057EPSS
Exploits1References3
CNNVD
CNNVDadded 2026/01/13 12:0 a.m.1 views

YouPHPTube 跨站脚本漏洞

YouPHPTube is a PHP-based video website system. A cross-site scripting vulnerability exists in YouPHPTube 7.8 and earlier versions, which stems from a cross-site scripting vulnerability in the redirectUri parameter in the signup page, which could lead to the execution of arbitrary JavaScript...

6.1CVSS5.9AI score0.00057EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2026/01/09 9:55 a.m.5 views

CVE-2020-12870

RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page...

9.8CVSS8AI score0.0103EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/12/20 6:14 p.m.1 views

CVE-2025-14959

A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available...

9.8CVSS7.2AI score0.00027EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2025/12/19 6:2 p.m.2 views

CVE-2025-14959

A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available...

9.8CVSS5.4AI score0.00027EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2025/12/19 6:2 p.m.24 views

CVE-2025-14959 code-projects Simple Stock System signup.php sql injection

A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available...

7.5CVSS0.00027EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-13954

Malware in sbrugna...

9.8CVSS9.2AI score0.00513EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2004-1725

Malware in sbrugna...

5CVSS6.4AI score0.06984EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-5151

Malware in sbrugna...

9.8CVSS9.2AI score0.0103EPSS
Exploits1References3
Rows per page
Query Builder