Lucene search
K

2762 matches found

CNNVD
CNNVD
added 2026/04/12 12:0 a.m.6 views

ImpressCMS SQL注入漏洞

ImpressCMS is a modular content management system CMS based on MySQL, developed by ImpressCMS Inc. This system includes modules for news publishing, forums, and photo albums. Version 1.3.11 of ImpressCMS has a SQL injection vulnerability, which stems from insufficient input validation for the bid...

8.8CVSS5.9AI score0.00342EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/12 12:0 a.m.6 views

PT-2026-32164

Newsbull Haber Script 1.0.0 contains multiple SQL injection vulnerabilities in the search parameter that allow authenticated attackers to extract database information through time-based, blind, and boolean-based injection techniques. Attackers can inject malicious SQL code through the search...

7.1CVSS5.9AI score0.00317EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/12 12:0 a.m.2 views

PT-2026-32166

ImpressCMS 1.3.11 contains a time-based blind SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'bid' parameter. Attackers can send POST requests to the admin.php endpoint with malicious 'bid' values containing SQL...

7.1CVSS6AI score0.00342EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/12 12:0 a.m.7 views

PT-2026-32175

MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the Chargegroup total parameter. Attackers can submit crafted POST requests to the /charge/admin endpoint with error-based, time-based blin...

7.1CVSS6.2AI score0.00276EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2026/04/11 7:14 p.m.97 views

Exploit for SQL Injection in Devcode Openstamanager

CVE-2026-24417: OpenSTAManager has a Time-Based Blind SQL Inje...

8.7CVSS6AI score0.00366EPSS
Exploits3
GithubExploit
GithubExploit
added 2026/04/11 7:14 p.m.95 views

Exploit for SQL Injection in Devcode Openstamanager

CVE-2026-24416: OpenSTAManager has a Time-Based Blind SQL Inje...

8.7CVSS6AI score0.00366EPSS
Exploits3
GithubExploit
GithubExploit
added 2026/04/11 7:13 p.m.108 views

Exploit for SQL Injection in Wbce Wbce_Cms

CVE-2025-65950: WBCE CMS is Vulnerable to Time-Based Blind SQL...

9.4CVSS6.2AI score0.00462EPSS
Exploits3
GithubExploit
GithubExploit
added 2026/04/11 7:13 p.m.87 views

Exploit for SQL Injection in Churchcrm

CVE-2025-68400: ChurchCRM vulnerable to time-based blind SQL I...

9.3CVSS5.8AI score0.00323EPSS
Exploits3
NVD
NVD
added 2026/04/10 7:16 p.m.6 views

CVE-2026-33710

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, REST API keys are generated using md5time + userid 5 - rand10000, 10000. The rand10000, 10000 call always returns exactly 10000 min == max, making the formula effectively md5timestamp + userid5 - 10000. An attacker who...

7.5CVSS0.00288EPSS
Exploits0References3
Metasploit
Metasploit
added 2026/04/10 7:2 p.m.352 views

AVideo Unauthenticated SQL Injection Credential Dump

AVideo use auxiliary/gather/avideocatnamesqli msf auxiliaryavideocatnamesqli show actions ...actions... msf auxiliaryavideocatnamesqli set ACTION msf auxiliaryavideocatnamesqli show options ...show and set options... msf auxiliaryavideocatnamesqli run This module requires Metasploit:...

9.8CVSS5.6AI score0.0151EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2026/04/10 6:59 p.m.4 views

CVE-2026-33710 Chamilo LMS has Weak REST API Key Generation (Predictable)

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, REST API keys are generated using md5time + userid 5 - rand10000, 10000. The rand10000, 10000 call always returns exactly 10000 min == max, making the formula effectively md5timestamp + userid5 - 10000. An attacker who...

7.5CVSS5.8AI score0.00288EPSS
Exploits0References3
NVD
NVD
added 2026/04/10 5:17 p.m.5 views

CVE-2026-35597

Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0, the TOTP failed-attempt lockout mechanism is non-functional due to a database transaction handling bug. When a TOTP validation fails, the login handler in pkg/routes/api/v1/login.go calls HandleFailedTOTPAuth and then...

7.5CVSS0.00296EPSS
Exploits1References4
NVD
NVD
added 2026/04/10 4:16 p.m.4 views

CVE-2026-34727

Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0, the OIDC callback handler issues a full JWT token without checking whether the matched user has TOTP two-factor authentication enabled. When a local user with TOTP enrolled is matched via the OIDC email fallback...

9.1CVSS0.00281EPSS
Exploits1References1
Veracode
Veracode
added 2026/04/10 4:13 p.m.3 views

Improper Authentication

github.com/zitadel/zitadel is vulnerable to improper authentication. The vulnerability is due to MFA being enforced only when explicitly required by policy, which allows an attacker to bypass additional authentication factors and exploit weaker single-factor sessions, potentially compromising...

9.8CVSS5.8AI score0.00336EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/04/10 4:3 p.m.20 views

CVE-2026-35597

Vikunja prior to 2.3.0 is vulnerable to TOTP brute-forcing because the login failure path writes the account lock status (StatusAccountLocked) on the same DB session that is rolled back after a failed TOTP check. The in-memory counter in HandleFailedTOTPAuth tracks failures, and once it reaches 1...

7.5CVSS5.8AI score0.00296EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/04/10 4:3 p.m.22 views

CVE-2026-35597 Vikunja Affected by TOTP Brute-Force Due to Non-Functional Account Lockout

Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0, the TOTP failed-attempt lockout mechanism is non-functional due to a database transaction handling bug. When a TOTP validation fails, the login handler in pkg/routes/api/v1/login.go calls HandleFailedTOTPAuth and then...

5.9CVSS0.00296EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/04/10 3:45 p.m.3 views

CVE-2026-34727 Vikunja ahs a TOTP Two-Factor Authentication Bypass via OIDC Login Path

Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0, the OIDC callback handler issues a full JWT token without checking whether the matched user has TOTP two-factor authentication enabled. When a local user with TOTP enrolled is matched via the OIDC email fallback...

7.4CVSS5.8AI score0.00281EPSS
Exploits1References1
CVE
CVE
added 2026/04/10 3:45 p.m.15 views

CVE-2026-34727

Vikunja

9.1CVSS5.8AI score0.00281EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/04/10 3:34 p.m.3 views

GHSA-FGFV-PV97-6CMJ Vikunja Vulnerable to TOTP Brute-Force Due to Non-Functional Account Lockout

Summary The TOTP failed-attempt lockout mechanism is non-functional due to a database transaction handling bug. The account lock is written to the same database session that the login handler always rolls back on TOTP failure, so the lockout is triggered but never persisted. This allows unlimited...

5.9CVSS5.9AI score0.00296EPSS
Exploits1References6
Snyk
Snyk
added 2026/04/10 3:34 p.m.7 views

Brute Force

Overview Affected versions of this package are vulnerable to Brute Force due to improper enforcement of authentication lockout in the login process. An attacker can gain unauthorized access to accounts protected by two-factor authentication by repeatedly submitting incorrect TOTP codes without...

8.2CVSS5.8AI score0.00296EPSS
Exploits1References2
Rows per page
Query Builder