Lucene search
K

160 matches found

CNNVD
CNNVD
added 2024/11/04 12:0 a.m.4 views

itsourcecode Farm Management System SQL注入漏洞

itsourcecode Farm Management System is an itsourcecode open source farm management system. SQL injection vulnerability exists in itsourcecode Farm Management System version 1.0, which originates from SQL injection of parameters pigno/weight/arrived/breed/remark/status...

8.8CVSS7.1AI score0.00517EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2024/06/14 6:15 p.m.3 views

CVE-2024-36597

Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...

8.8CVSS5.6AI score0.02338EPSS
Exploits5References3
NVD
NVD
added 2024/04/12 7:15 a.m.17 views

CVE-2024-29400

An issue was discovered in RuoYi v4.5.1, allows attackers to obtain sensitive information via the status parameter...

7.5CVSS6AI score0.0064EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/04/12 12:0 a.m.2 views

RuoYi 安全漏洞

RuoYi is a backend management system for individual developers of RuoYi China. A security vulnerability exists in RuoYi v4.5.1. An attacker exploited the vulnerability to obtain sensitive information via the status parameter...

7.5CVSS6.4AI score0.0064EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/04/12 12:0 a.m.13 views

CVE-2024-29400

An issue was discovered in RuoYi v4.5.1, allows attackers to obtain sensitive information via the status parameter...

6.3AI score0.0064EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/04/12 12:0 a.m.23 views

CVE-2024-29400

An issue was discovered in RuoYi v4.5.1, allows attackers to obtain sensitive information via the status parameter...

6.2AI score0.0064EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/04/12 12:0 a.m.4 views

PT-2024-22881 · Ruoyi · Ruoyi

Name of the Vulnerable Software and Affected Versions: RuoYi version 4.5.1 Description: An issue was discovered that allows attackers to obtain sensitive information via the status parameter. Recommendations: For RuoYi version 4.5.1, consider restricting access to the status parameter to minimize...

7.5CVSS5.9AI score0.0064EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.5 views

WordPress Plugin WP ERP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.2CVSS8.2AI score0.00615EPSS
Exploits0References3
Exploit DB
Exploit DB
added 2024/03/20 12:0 a.m.454 views

Simple Task List 1.0 - 'status' SQLi

Exploit Title: Simple Task List 1.0 - 'status' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/simple-task-list-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/12/SimpleTaskListInPHPWithSourceCode.zip Version: 1.0...

6.5CVSS6.6AI score0.00583EPSS
Exploits3
OSV
OSV
added 2024/03/09 7:15 a.m.4 views

CVE-2024-1320

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'offlinestatus' parameter in all versions up to, and including, 3.4.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS7.4AI score0.00374EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/09 12:0 a.m.6 views

PT-2024-17940 · WordPress · Eventprime – Events Calendar

Name of the Vulnerable Software and Affected Versions: The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress versions up to, and including, 3.4.3 Description: The issue is related to Stored Cross-Site Scripting via the offline status parameter due to insufficient input...

6.5CVSS6.5AI score0.00374EPSS
Exploits0References8
NVD
NVD
added 2024/02/20 10:15 p.m.11 views

CVE-2024-25428

SQL Injection vulnerability in MRCMS v3.1.2 allows attackers to run arbitrary system commands via the status parameter...

6.5CVSS7.9AI score0.00395EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/02/20 12:0 a.m.2 views

MRCMS Security Vulnerabilities

MRCMS is a content management system by markers personal developer. A security vulnerability exists in MRCMS v3.1.2. The vulnerability can be exploited to execute arbitrary system commands via the status parameter...

6.5CVSS7.5AI score0.00395EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/02/20 12:0 a.m.12 views

CVE-2024-25428

SQL Injection vulnerability in MRCMS v3.1.2 allows attackers to run arbitrary system commands via the status parameter...

8.6AI score0.00395EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.3 views

PT-2024-20937 · Mrcms · Mrcms

Name of the Vulnerable Software and Affected Versions: MRCMS version 3.1.2 Description: The issue allows attackers to run arbitrary system commands via the status parameter, potentially leading to unauthorized access and control. Recommendations: For MRCMS version 3.1.2, avoid using the status...

6.5CVSS7.1AI score0.00395EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2023/11/14 10:15 p.m.3 views

CVE-2023-46023

SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...

6.5CVSS5.9AI score0.00583EPSS
Exploits3References2
OSV
OSV
added 2023/11/14 10:15 p.m.4 views

CVE-2023-46023

SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...

6.5CVSS5.8AI score0.00583EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.6 views

PT-2023-29805 · Unknown · Code-Projects Simple Task List

Name of the Vulnerable Software and Affected Versions: Code-Projects Simple Task List version 1.0 Description: A SQL injection issue allows attackers to obtain sensitive information by manipulating the status parameter in the "addTask.php" file. Recommendations: For Code-Projects Simple Task List...

6.5CVSS6.6AI score0.00583EPSS
Exploits3References2
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.7 views

Code-Projects Simple Task List Security Vulnerability

Code-Projects Simple Task List is Code-Projects open source a simple task list system . Code-Projects Simple Task List version 1.0 has a security vulnerability , the vulnerability stems from allowing an attacker to obtain sensitive information through the status parameter in addTask.php...

6.5CVSS6.5AI score0.00583EPSS
Exploits3References2
OSV
OSV
added 2023/11/02 2:15 p.m.3 views

CVE-2023-45334

Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'status' parameter of the routers/edit-orders.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS5.8AI score0.007EPSS
Exploits1References2
Rows per page
Query Builder