Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-31440

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.0007EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2025/09/27 8:32 p.m.2 views

CVE-2025-11078 itsourcecode Open Source Job Portal controller.php unrestricted upload

A vulnerability was identified in itsourcecode Open Source Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/user/controller.php?action=photos. The manipulation of the argument photo leads to unrestricted upload. The attack is possible to be carried out...

6.5CVSS6.5AI score0.0007EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/09/15 12:0 a.m.3 views

PT-2025-37448

Name of the Vulnerable Software and Affected Versions: 1000projects Online Student Project Report Submission and Evaluation System version 1.0 Description: A vulnerability exists in 1000projects Online Student Project Report Submission and Evaluation System version 1.0 that allows for unrestricte...

9.8CVSS7.2AI score0.00116EPSS
Exploits1References10
CVE
CVEadded 2025/08/13 12:0 a.m.10 views

CVE-2025-45315

CVE-2025-45315 describes an XSS vulnerability in hortusfox-web v4.4 via the /controller/admin.php endpoint, exploitable by injecting a crafted payload into the email parameter to execute JavaScript in a user’s browser. The underlying cause is misuse/insufficient sanitization of the email input, e...

5.4CVSS6AI score0.00097EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2024/08/22 6:15 p.m.0 views

CVE-2024-42773

An Incorrect Access Control vulnerability was found in /admin/editroomcontroller.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to edit the valid hotel room entries in the administrator section...

9.1CVSS5.8AI score
Exploits0References2
CNNVD
CNNVDadded 2024/03/20 12:0 a.m.2 views

Campcodes Online Job Finder System SQL Injection Vulnerability

Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A SQL injection vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which originates from a SQL injection vulnerability in the CATEGORYID parameter of the /admin/category/controller.p...

6.5CVSS7.9AI score0.00046EPSS
Exploits1References4
CNNVD
CNNVDadded 2024/03/20 12:0 a.m.2 views

Campcodes Online Job Finder System SQL Injection Vulnerability

Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A SQL injection vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which originates from a SQL injection vulnerability in the EMPLOYEEID parameter of the /admin/employee/controller.p...

6.5CVSS7.9AI score0.00046EPSS
Exploits1References4
CNNVD
CNNVDadded 2022/12/12 12:0 a.m.0 views

SENS 跨站脚本漏洞

SENS is an enterprise blog system by saysky individual developer. A cross-site scripting vulnerability exists in SENS v1.0, which originates from a cross-site scripting attack XSS on com.liuyanzhao.sens.web.controller.admin, getRegister...

5.4CVSS5.3AI score0.00295EPSS
Exploits1References2
Rows per page
Query Builder