Lucene search
K

246 matches found

Vulnrichment
Vulnrichment
added 2025/11/14 12:0 a.m.5 views

CVE-2024-44630

Multiple parameters in register.php in PHPGurukul Student Record System 3.20 are vulnerable to SQL injection. These include: c-full, fname, mname,lname, gname, ocp, nation, mobno, email, board1, roll1, pyear1, board2, roll2, pyear2, sub1,marks1, sub2, course-short, income, category, ph, country,...

7.2AI score0.00215EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.6 views

OpenVPN Access Server 安全漏洞

OpenVPN Access Server is a web-based VPN management interface from OpenVPN, Inc. A security vulnerability exists in OpenVPN Access Server versions 2.14.0 through 2.14.3, which stems from the RelayState parameter in the SAML Authentication module not being filtered correctly, which could lead to...

6.4CVSS5.9AI score0.00204EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 6:14 p.m.10 views

CVE-2025-22170

Jira Align is vulnerable to an authorization issue. A low-privilege user without sufficient privileges to perform an action could if they included a particular state-related parameter of a user with sufficient privileges to perform the action...

5.3CVSS6.8AI score0.00188EPSS
Exploits0References1
OSV
OSV
added 2025/10/22 5:15 p.m.2 views

CVE-2025-22170

Jira Align is vulnerable to an authorization issue. A low-privilege user without sufficient privileges to perform an action could if they included a particular state-related parameter of a user with sufficient privileges to perform the action...

4.3CVSS5.8AI score0.00188EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 5:15 p.m.4 views

CVE-2025-22170

Jira Align is vulnerable to an authorization issue. A low-privilege user without sufficient privileges to perform an action could if they included a particular state-related parameter of a user with sufficient privileges to perform the action...

5.3CVSS0.00188EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 4:30 p.m.3 views

CVE-2025-22170

Jira Align is vulnerable to an authorization issue. A low-privilege user without sufficient privileges to perform an action could if they included a particular state-related parameter of a user with sufficient privileges to perform the action...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 4:30 p.m.12 views

CVE-2025-22170

Summary: Jira Align has an authorization vulnerability where a low-privilege user could abuse a state-related parameter from a higher-privileged user to perform restricted actions. This is described in multiple sources (NVD/Red Hat/CVE records) without detailed root-cause or affected version info...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/22 4:30 p.m.5 views

EUVD-2025-35601

Jira Align is vulnerable to an authorization issue. A low-privilege user without sufficient privileges to perform an action could if they included a particular state-related parameter of a user with sufficient privileges to perform the action...

5.3CVSS6.3AI score0.00188EPSS
Exploits0References2
CNVD
CNVD
added 2025/10/15 12:0 a.m.3 views

Online Complaint Site state.php File SQL Injection Vulnerability

Online Complaint Site is an online complaint site. Online Complaint Site suffers from a SQL injection vulnerability that originates from the lack of validation of the parameter state in the file /cms/admin/state.php for externally entered SQL statements. An attacker can exploit this vulnerability...

8.8CVSS8.2AI score0.00351EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/10 4:26 a.m.5 views

CVE-2025-11530

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

8.8CVSS6.9AI score0.00351EPSS
Exploits1References1
OSV
OSV
added 2025/10/09 4:16 a.m.5 views

CVE-2025-11530

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

8.8CVSS5.7AI score0.00351EPSS
Exploits1References5
NVD
NVD
added 2025/10/09 4:16 a.m.8 views

CVE-2025-11530

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

8.8CVSS0.00351EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/09 3:32 a.m.9 views

CVE-2025-11530 code-projects Online Complaint Site state.php sql injection

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

6.5CVSS0.00351EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/09 3:32 a.m.5 views

EUVD-2025-33256

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

8.8CVSS6.3AI score0.00351EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.7 views

PT-2025-41356

Name of the Vulnerable Software and Affected Versions code-projects Online Complaint Site version 1.0 Description A flaw exists in code-projects Online Complaint Site 1.0 that allows for remote SQL injection. The issue is located in the file /cms/admin/state.php and involves manipulation of the...

8.8CVSS6.3AI score0.00351EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/10/09 12:0 a.m.4 views

Code-Projects Online Complaint Site SQL注入漏洞

Online Complaint Site is an online complaint site. Online Complaint Site suffers from a SQL injection vulnerability that originates from the lack of validation of the parameter state in the file /cms/admin/state.php for externally entered SQL statements. An attacker can exploit this vulnerability...

8.8CVSS7AI score0.00351EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-23633

Malware in sbrugna...

9.8CVSS9.4AI score0.01904EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-6216

Malware in sbrugna...

8.8CVSS8.6AI score0.01164EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-0176

Malware in sbrugna...

8.8CVSS8.8AI score0.00638EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-0187

Malware in sbrugna...

8.8CVSS8.8AI score0.00522EPSS
Exploits0References4
Rows per page
Query Builder