CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability, which was classified as critical, has been found in code-projects Wazifa System 1.0. This issue affects some unknown processing of the file /controllers/updatesettings.php. The manipulation of the argument Password leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS7.4AI score0.00204EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:11 a.m.•12 views

CVE-2013-0678

Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, does not properly represent WebNavigator credentials in a database, which makes it easier for remote authenticated users to obtain sensitive information via a SQL query...

4CVSS6.5AI score0.00211EPSS

Exploits0References1

RedhatCVE•added 2025/05/18 2:15 p.m.•7 views

CVE-2025-4778

A vulnerability was found in PHPGurukul Park Ticketing Management System 2.0. It has been declared as critical. This vulnerability affects unknown code of the file /normal-search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated remotely. The...

8.8CVSS7.5AI score0.00197EPSS

Exploits1References1

Positive Technologies•added 2025/03/22 12:0 a.m.•2 views

PT-2025-12501 · Sourcecodester · Sourcecodester Kortex Lite Advocate Office Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Kortex Lite Advocate Office Management System version 1.0 Description: A critical vulnerability was found in the SourceCodester Kortex Lite Advocate Office Management System. This issue affects unknown code in the file edit...

9.8CVSS6.8AI score0.00049EPSS

Exploits1References13

Redos•added 2024/09/11 12:0 a.m.•6 views

ROS-20240911-20

A vulnerability in the pgdump utility of the PostgreSQL database management system is related to the dereferencing of a null pointer due to competitive access to a resource race condition. pointer due to competitive access to a resource race condition. Exploitation of the vulnerability could allo...

8.8CVSS8.4AI score0.00743EPSS

Exploits0

Packet Storm•added 2023/01/23 12:0 a.m.•305 views

Inout RealEstate 2.1.3 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

0.2AI score

Exploits0

seebug.org•added 2015/12/20 12:0 a.m.•32 views

用友U8远程快速接入系统sql注入漏洞

No description provided by source...

7.1AI score

Exploits0

myhack58•added 2012/10/14 12:0 a.m.•20 views

SongCMS enterprise website backstage management system loopholes getshell-a vulnerability warning-the black bar safety net

SongCMS enterprise built Station system is based on ASP+ACCESS/SQL technical site background management system, Suitable for General programmers to develop a variety of personalized corporate website,database and call the function have detailed comments; ewebeditor: inc/ewebeditor/adminlogin. asp...

2.2AI score

Exploits0

Packet Storm•added 2011/12/25 12:0 a.m.•25 views

D-Zayn Web Design Access SQL Injection

Exploit Title: D-Zayn Web Design Access SQL Injecti0n Vulnerability Date: 25/12/2011 Author: 3spi0n Software Website: http://www.d-zayn.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Dorks: "created by d-zayn.com" Vulnerable File : " All Files " $ Demo Sites:...

0.7AI score

Exploits0

myhack58•added 2010/06/29 12:0 a.m.•17 views

Yxbbs Forum system Ver 3.1.0 multiple vulnerabilities-vulnerability warning-the black bar safety net

Yxbbs by the Y network developed a set of open source free Community Forum system program, using asp+Access SQL technical. Speed: the use of currently the more popular caching technology, which greatly accelerates the forum access speed Function: although the function can not be and dynamic netwo...

1.8AI score

Exploits0

Exploit DB•added 2005/01/25 12:0 a.m.•23 views

Comersus Cart 5.0/6.0 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/12362/info Comersus Cart is reportedly affected by multiple vulnerabilities. There is a possiblity of gaining administrator access due to a failure of the application to remove an installation script after install. There is the possiblity of SQL injection...

7AI score

Exploits0

Tenable Nessus•added 2004/08/17 12:0 a.m.•17 views

phpGroupWare Multiple Module SQL Injection

The remote host seems to be running PhpGroupWare, a multi-user groupware suite written in PHP. It has been reported that this version may be prone to multiple SQL injection vulnerabilities in the 'calendar' and 'infolog' modules. The problems exist due to insufficient sanitization of user-supplie...

7.5CVSS5.6AI score0.00502EPSS

Exploits0References2

Exploit DB•added 2003/05/10 12:0 a.m.•59 views

Snitz Forums 2000 - 'register.asp' SQL Injection

source: https://www.securityfocus.com/bid/7549/info Snitz Forums 2000 is ASP-based web forum software. It runs on Microsoft Windows operating systems. Snitz is back-ended by a database and supports Microsoft Access 97/2000, SQL Server 6.5/7.0/2000 and MySQL. It is possible for a remote attacker t...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by