Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/06 11:14 p.m.6 views

CVE-2020-37147

ATutor 2.2.4 contains a SQL injection vulnerability in the admin user deletion page that allows authenticated attackers to manipulate database queries through the 'id' parameter. Attackers can exploit the vulnerability by injecting malicious SQL code into the 'id' parameter of the admindelete.php...

7.1CVSS5.8AI score0.00282EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/07/30 1:15 p.m.6 views

CVE-2025-8326

A vulnerability classified as critical has been found in code-projects Exam Form Submission 1.0. Affected is an unknown function of the file /admin/deletes7.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

9.8CVSS5.8AI score0.00399EPSS
Exploits1References5
OSV
OSV
added 2025/07/28 10:15 a.m.3 views

CVE-2025-8270

A vulnerability was found in code-projects Exam Form Submission 1.0. It has been classified as critical. This affects an unknown part of the file /admin/deletes2.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS5.8AI score0.00454EPSS
Exploits1References5
CNVD
CNVD
added 2019/09/23 12:0 a.m.4 views

NoneCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-35786)

NoneCMS is a content management system CMS based on Thinkphp. A cross-site request forgery vulnerability exists in the public/index.php/admin/admin/dele.html page in NoneCMS v1.3, which can be exploited by an attacker to send an unintended request to the server via an affected client...

6.5CVSS6.9AI score0.00534EPSS
Exploits1References1
Rows per page
Query Builder