CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/01/14 12:0 a.m.•1 views

PT-2026-2947

Name of the Vulnerable Software and Affected Versions Pimcore versions prior to 12.3.1 Pimcore versions prior to 11.5.14 Description Pimcore is an Open Source Data & Experience Management Platform. An incomplete SQL injection patch in the Admin Search Find API allows an authenticated attacker to...

8.8CVSS8.6AI score0.00005EPSS

Exploits1References14

CNNVD•added 2026/01/14 12:0 a.m.•1 views

Pimcore SQL注入漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A SQL injection vulnerability exists in Pimcore...

8.8CVSS7.4AI score0.00005EPSS

Exploits1References3

RedhatCVE•added 2025/12/30 1:8 p.m.•2 views

CVE-2025-15188

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/search-invoices.php. Executing a manipulation of the argument searchdata can lead to cross site scripting. The attack can be launched remotel...

4.8CVSS3AI score0.00024EPSS

EUVD•added 2025/12/29 3:30 p.m.•2 views

EUVD-2025-205576

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/search-invoices.php. Executing manipulation of the argument searchdata can lead to cross site scripting. The attack can be launched remotely...

4.8CVSS5.3AI score0.00024EPSS

OSV•added 2025/12/29 1:15 p.m.•1 views

CVE-2025-15188

4.8CVSS4.1AI score

Exploits0References5

ATTACKERKB•added 2025/12/29 12:32 p.m.•2 views

CVE-2025-15188

4.8CVSS3.8AI score0.00024EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2025/12/29 12:32 p.m.•3 views

CVE-2025-15188 Campcodes Complete Online Beauty Parlor Management System search-invoices.php cross site scripting

4.8CVSS3AI score0.00024EPSS

CNVD•added 2025/12/25 12:0 a.m.•2 views

Complete Online Beauty Parlor Management System /search-invoices.php File SQL Injection Vulnerability

Complete Online Beauty Parlor Management System is an online beauty parlor management system. Complete Online Beauty Parlor Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the file...

9.8CVSS6AI score0.00027EPSS

CNNVD•added 2025/12/21 12:0 a.m.•1 views

CampCodes Complete Online Beauty Parlor Management System SQL注入漏洞

9.8CVSS7.2AI score0.00027EPSS

RedhatCVE•added 2025/12/14 11:0 a.m.•1 views

CVE-2025-14589

A weakness has been identified in code-projects Prison Management System 2.0. This issue affects some unknown processing of the file /admin/search.php. Executing a manipulation of the argument keyname can lead to sql injection. The attack may be performed from remote. The exploit has been made...

8.8CVSS6.3AI score0.00027EPSS

EUVD•added 2025/12/13 6:30 p.m.•2 views

EUVD-2025-203258

A weakness has been identified in code-projects Prison Management System 2.0. This issue affects some unknown processing of the file /admin/search.php. Executing manipulation of the argument keyname can lead to sql injection. The attack may be performed from remote. The exploit has been made...

6.5CVSS6.3AI score0.00027EPSS

OSV•added 2025/12/13 4:16 p.m.•1 views

CVE-2025-14589

8.8CVSS5.7AI score0.00027EPSS

NVD•added 2025/12/13 4:16 p.m.•1 views

CVE-2025-14589

8.8CVSS0.00027EPSS

Cvelist•added 2025/12/13 12:2 p.m.•22 views

CVE-2025-14590 code-projects Prison Management System search1.php sql injection

A security vulnerability has been detected in code-projects Prison Management System 2.0. Impacted is an unknown function of the file /admin/search1.php. The manipulation of the argument keyname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

7.5CVSS0.00028EPSS

Vulnrichment•added 2025/12/13 10:32 a.m.•1 views

CVE-2025-14589 code-projects Prison Management System search.php sql injection

6.5CVSS6.3AI score0.00027EPSS

Cvelist•added 2025/12/13 10:32 a.m.•22 views

CVE-2025-14589 code-projects Prison Management System search.php sql injection

6.5CVSS0.00027EPSS

ATTACKERKB•added 2025/12/13 10:32 a.m.•2 views

CVE-2025-14589

8.8CVSS5.4AI score0.00027EPSS

Exploits1References5Affected Software1

CVE•added 2025/12/13 10:32 a.m.•5 views

CVE-2025-14589

Summary (CVE-2025-14589) : The “code-projects Prison Management System 2.0” is affected by a SQL injection vulnerability in the file /admin/search.php, triggered by manipulating the parameter keyname . The underlying cause is lack of validation of externally supplied SQL, enabling remote exploita...

8.8CVSS6.3AI score0.00027EPSS

Exploits1References5Affected Software1

CNNVD•added 2025/12/13 12:0 a.m.•1 views

Code-Projects Prison Management System SQL注入漏洞

Prison Management System is a prison management system. Prison Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter keyname in the file /admin/search.php. An attacker can exploit this...

8.8CVSS7AI score0.00027EPSS