Lucene search
K

47 matches found

NVD
NVD
added 2025/11/17 12:15 p.m.4 views

CVE-2025-13277

A flaw has been found in code-projects Nero Social Networking Site 1.0. This issue affects some unknown processing of the file /friendsphoto.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used...

9.8CVSS0.00385EPSS
Exploits1References5
CVE
CVE
added 2025/11/17 11:32 a.m.10 views

CVE-2025-13277

CVE-2025-13277 affects Nero Social Networking Site 1.0. The vulnerability is a SQL injection in the /friendsphoto.php file, triggered by manipulating the ID parameter. It allows remote exploitation and has publicly published exploits. Connected sources (CNVD-2025-30209, RH-CVE, CNNVD, PT-2025-471...

9.8CVSS7.1AI score0.00385EPSS
Exploits1References5Affected Software1
CNVD
CNVD
added 2025/10/31 12:0 a.m.3 views

Nero Social Networking Site deletemessage.php File SQL Injection Vulnerability

Nero Social Networking Site is a social networking site. Nero Social Networking Site suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter messageid in the file /deletemessage.php. An attacker can exploit this...

9.8CVSS7.8AI score0.00431EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/31 12:0 a.m.2 views

Nero Social Networking Site friendprofile.php File SQL Injection Vulnerability

Nero Social Networking Site is a social networking site. Nero Social Networking Site suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter ID of the file /friendprofile.php. An attacker can exploit this...

9.8CVSS7.8AI score0.00431EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/28 7:53 p.m.5 views

CVE-2025-12308

A security flaw has been discovered in code-projects Nero Social Networking Site 1.0. Affected by this issue is some unknown functionality of the file /deletemessage.php. Performing manipulation of the argument messageid results in sql injection. It is possible to initiate the attack remotely. Th...

9.8CVSS7AI score0.00431EPSS
Exploits1References1
OSV
OSV
added 2025/10/27 7:16 p.m.5 views

CVE-2025-12309

A weakness has been identified in code-projects Nero Social Networking Site 1.0. This affects an unknown part of the file /friendprofile.php. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made available to t...

9.8CVSS5.8AI score0.00431EPSS
Exploits1References5
OSV
OSV
added 2025/10/27 7:16 p.m.4 views

CVE-2025-12307

A vulnerability was identified in code-projects Nero Social Networking Site 1.0. Affected by this vulnerability is an unknown functionality of the file /addfriend.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly...

9.8CVSS5.8AI score0.00431EPSS
Exploits1References5
CVE
CVE
added 2025/10/27 7:2 p.m.15 views

CVE-2025-12309

CVE-2025-12309 concerns code-projects Nero Social Networking Site 1.0. The SQL injection vulnerability arises from lack of validation of the ID parameter in /friendprofile.php, enabling remote manipulation of SQL statements. Multiple connected sources (CNVD, CNNVD, Red Hat, ENISA, NVD, etc.) desc...

9.8CVSS6.7AI score0.00431EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.6 views

Code-Projects Nero Social Networking Site SQL注入漏洞

Nero Social Networking Site is a social networking site. Nero Social Networking Site suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /addfriend.php. An attacker can exploit this vulnerability to...

9.8CVSS8.1AI score0.00431EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6391

Malware in sbrugna...

7.5CVSS6.4AI score0.029EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-6390

Malware in sbrugna...

5CVSS6.4AI score0.03559EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-6389

Malware in sbrugna...

7.5CVSS6.4AI score0.01235EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-52299

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00814EPSS
Exploits1References1
OSV
OSV
added 2022/05/24 2:15 p.m.3 views

CVE-2022-30460

Simple Social Networking Site v1.0 is vulnerable to Cross Site Scripting XSS via /sns/classes/Users.php?f=save, firstname...

5.4CVSS6.1AI score0.00471EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/05/13 2:15 p.m.2 views

CVE-2022-30375

Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file deletion via /sns/classes/Master.php?f=deleteimg...

6.5CVSS6.6AI score0.00814EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/05/13 12:0 a.m.4 views

Simple Social Networking Site SQL注入漏洞

Simple Social Networking Site is a social networking site. Simple Social Networking Site has a security vulnerability that can be exploited by attackers to conduct SQL injection attacks via /sns/admin/?page=posts/viewpost&id=...

7.2CVSS7.3AI score0.00909EPSS
Exploits1References2
wpexploit
wpexploit
added 2015/05/04 12:0 a.m.15 views

Pie Register 2.0.14-2.0.15 - Privilege Escalation

User input is not validated correctly when accepting a login request via the Pie Register plugin. It is possible to manipulate posted variables in order to login using an arbitrary User ID such as 1, for the default Administrative account. import requests target="http://localhost" payload =...

1.9AI score
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Social Site Generator 2.0 - Multiple Remote File Disclosure Vulnerabilities

No description provided by source. Application Name : Social Site Generator Download : http://rapidshare.com/files/118424866/Social.Site.Generator.v2.iAG.Nulled.rar Vulnerable Type : Remote File disclouse Dork : search it :p Vulnerable file : filedload.php author : Stack & Jadi Team : v4 Team...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Social Site Generator 2.2 - CSRF Add Admin Exploit

No description provided by source...

7.1AI score
Exploits0
0day.today
0day.today
added 2013/08/13 12:0 a.m.20 views

Social Site Generator 2.2 - CSRF Add Admin Exploit

Exploit for php platform in category web applications Exploit Title: social generator Remote Add Admin Exploit Date: 02/05/2013 Author: Fallaga Script url:www.socialsitegeneratorscript.com Version: 2.2 Tested on: Windows CVE : Dork: inurl:myprofile.php?userid=MTM= Username: Password:...

7.1AI score
Exploits0
Rows per page
Query Builder