CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

822 matches found

EUVD•added 2025/10/07 6:31 a.m.•4 views

EUVD-2025-32607

A weakness has been identified in code-projects Online Hotel Reservation System 1.0. The impacted element is an unknown function of the file /admin/editpicexec.php. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has...

6.5CVSS6.1AI score0.00292EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2012-0974

Malware in sbrugna...

7.8CVSS7.6AI score0.00376EPSS

Exploits0References3

Positive Technologies•added 2025/10/07 12:0 a.m.•5 views

PT-2025-40971

Name of the Vulnerable Software and Affected Versions Simple Banking System version 1.0 Description A flaw exists in Simple Banking System 1.0, specifically within the /removeuser.php file. Manipulation of the ID argument can lead to SQL injection. This issue may be exploited remotely. The exploi...

8.8CVSS6.4AI score0.00299EPSS

Exploits1References9

OSV•added 2025/10/06 10:15 a.m.•5 views

CVE-2025-11330

A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/sales-reports-detail.php. Such manipulation of the argument fromdate/todate leads to sql injection. The attack can be launched remotely. The exploit ha...

8.8CVSS5.8AI score0.00303EPSS

Exploits1References7

Vulnrichment•added 2025/10/06 5:32 a.m.•3 views

CVE-2025-11322 Mangati NovoSGA User Creation new weak password

A flaw has been found in Mangati NovoSGA up to 2.2.12. The impacted element is an unknown function of the file /novosga.users/new of the component User Creation Page. Executing manipulation of the argument Senha/Confirmação da senha can lead to weak password requirements. The attack can be launch...

6.3CVSS6.2AI score0.00323EPSS

Exploits0References5

EUVD•added 2025/10/05 3:30 p.m.•2 views

EUVD-2025-32458

A security flaw has been discovered in ixmaps website2017 up to 0c71cffa0162186bc057a76766bc97e9f5a3a2d0. This impacts an unknown function of the file /map.php of the component HTTP GET Request Handler. Performing manipulation of the argument trid results in cross site scripting. The attack can b...

5.3CVSS3.9AI score0.00309EPSS

Exploits0References6

EUVD•added 2025/10/05 6:30 a.m.•3 views

EUVD-2025-32445

A vulnerability has been found in Frappe LMS 2.35.0. The affected element is an unknown function of the file /courses/ of the component Unpublished Course Handler. Such manipulation leads to improper access controls. The attack may be launched remotely. This attack is characterized by high...

5CVSS6.2AI score0.00319EPSS

Exploits1References6

OSV•added 2025/10/05 5:15 a.m.•3 views

CVE-2025-11282

A vulnerability was found in Frappe LMS 2.34.x/2.35.0. The impacted element is an unknown function of the component Incomplete Fix CVE-2025-55006. Performing manipulation results in cross site scripting. Remote exploitation of the attack is possible. The exploit has been made public and could be...

6.1CVSS5.8AI score0.00245EPSS

Exploits0References5

ATTACKERKB•added 2025/10/05 4:32 a.m.•6 views

CVE-2025-11282

A vulnerability was found in Frappe LMS 2.34.x/2.35.0. The impacted element is an unknown function of the component Incomplete Fix CVE-2025-55006. Performing a manipulation results in cross site scripting. Remote exploitation of the attack is possible. The exploit has been made public and could b...

8.8CVSS4.2AI score0.00353EPSS

Exploits1References6Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-31084

Malicious code in bioql PyPI...

5.1CVSS4.8AI score0.00233EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-26360

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00387EPSS

Exploits1References7