Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

376 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-2852

Malware in sbrugna...

6.5CVSS6.4AI score0.00747EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-31905

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00155EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-51143

Malicious code in bioql PyPI...

6.9CVSS4.9AI score0.00145EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-16885

Malicious code in bioql PyPI...

6.1CVSS5AI score0.00122EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-30609

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.02659EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/09/14 12:0 a.m.2 views

PT-2025-37427

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Grading System version 1.0 Description: A SQL injection issue exists in the /view user.php file due to manipulation of the ID argument. This allows for remote exploitation. The exploit is publicly available...

8.8CVSS6.6AI score0.00058EPSS
Exploits1References10
Vulnrichment
Vulnrichmentadded 2025/07/27 2:32 p.m.3 views

CVE-2025-8233 code-projects Online Ordering System user.php sql injection

A vulnerability has been found in code-projects Online Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/user.php. The manipulation of the argument un leads to sql injection. The attack can be launched remotely. The explo...

7.5CVSS7.5AI score0.00204EPSS
Exploits1References5
OSV
OSVadded 2025/06/01 9:15 a.m.0 views

CVE-2025-5400

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been classified as critical. Affected is an unknown function of the file /user.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql injection. It is...

9.8CVSS5.7AI score0.00223EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/06/01 8:31 a.m.11 views

CVE-2025-5400 chaitak-gorai Blogbook GET Parameter user.php sql injection

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been classified as critical. Affected is an unknown function of the file /user.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql injection. It is...

7.5CVSS0.00223EPSS
Exploits1References4
CVE
CVEadded 2025/06/01 8:31 a.m.49 views

CVE-2025-5400

CVE-2025-5400 affects the Blogbook product by Chaitak-Gorai, in the file /user.php (GET Parameter Handler). The vulnerability arises from unsafely handling the parameter u_id , enabling remote SQL injection. It is described as critical with potential high impact on confidentiality, integrity, and...

9.8CVSS7.4AI score0.00223EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2025/06/01 12:0 a.m.3 views

PT-2025-23421 · Unknown · Chaitak-Gorai Blogbook

Name of the Vulnerable Software and Affected Versions: chaitak-gorai Blogbook versions up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 Description: A critical vulnerability was found in chaitak-gorai Blogbook, affecting an unknown function of the file /user.php of the component GET Parameter...

7.5CVSS7.4AI score0.00223EPSS
Exploits1References11
RedhatCVE
RedhatCVEadded 2025/05/23 6:32 a.m.3 views

CVE-2024-12842

A vulnerability was found in Emlog Pro up to 2.4.1. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/user.php. The manipulation of the argument keyword leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclose...

6.9CVSS4.5AI score0.00145EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 3:21 p.m.4 views

CVE-2020-25004

Heybbs v1.2 has a SQL injection vulnerability in user.php file via the ID parameter which may allow a remote attacker to execute arbitrary code...

9.8CVSS8.4AI score0.01489EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 6:0 a.m.4 views

CVE-2011-5168

SQL injection vulnerability in user.php in Banana Dance before B.1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.8AI score0.00629EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/02/23 9:0 a.m.11 views

CVE-2025-1579 code-projects Blood Bank System user.php cross site scripting

A vulnerability was found in code-projects Blood Bank System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/user.php. The manipulation of the argument email leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

4.8CVSS0.00037EPSS
Exploits1References5
CVE
CVEadded 2024/12/20 8:0 p.m.45 views

CVE-2024-12842

CVE-2024-12842 affects Emlog Pro up to version 2.4.1. The issue is in an unknown code path of /admin/user.php where manipulating the keyword argument causes cross-site scripting (XSS). Exploitation can be remote and the exploit has been publicly disclosed. Connected documents corroborate the pres...

6.9CVSS4.5AI score0.00145EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2024/12/20 8:0 p.m.12 views

CVE-2024-12842 Emlog Pro user.php cross site scripting

A vulnerability was found in Emlog Pro up to 2.4.1. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/user.php. The manipulation of the argument keyword leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclose...

6.9CVSS0.00145EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2024/12/20 8:0 p.m.7 views

CVE-2024-12842 Emlog Pro user.php cross site scripting

A vulnerability was found in Emlog Pro up to 2.4.1. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/user.php. The manipulation of the argument keyword leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclose...

6.9CVSS6.4AI score0.00145EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2024/12/20 12:0 a.m.1 views

PT-2024-17761 · Emlog Pro · Emlog Pro

Name of the Vulnerable Software and Affected Versions: Emlog Pro versions up to 2.4.1 Description: A vulnerability was found in Emlog Pro, affecting unknown code of the file /admin/user.php. The manipulation of the keyword argument leads to cross-site scripting. The attack can be initiated...

6.9CVSS4.3AI score0.00145EPSS
Exploits1References11
Packet Storm
Packet Stormadded 2024/12/02 12:0 a.m.282 views

Simple Chat System 1.0 Cross Site Scripting

Exploit Title:Simple Chat System 1.0 Reflected XSS Date:05/12/2024 Exploit Author:Merve Hatice Arslan Vendor Homepage:https://code-projects.org/simple-chat-system/ Sofware Link:https://download.code-projects.org/details/ec6340ea-ef68-48d9-b9b2-da397f52b2dc Version:1.0 Tested on:Linux / XAMPP...

7.4AI score
Exploits0
Rows per page
Query Builder