Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNNVD
CNNVDadded 2025/12/13 12:0 a.m.1 views

Code-Projects Student File Management System SQL注入漏洞

Student File Management System is a student file management system. A SQL injection vulnerability exists in Student File Management System, which originates from the lack of validation of an externally entered SQL statement in the parameter userid in the file /admin/updateuser.php. An attacker ca...

9.8CVSS7.9AI score0.00028EPSS
Exploits1References6
CVE
CVEadded 2025/01/09 4:0 a.m.42 views

CVE-2024-13213

CVE-2024-13213 affects SingMR HouseRent 1.0 via /toAdminUpdateHousePage?hID=30, enabling cross-site scripting. The issue arises from manipulated input in that endpoint. The CVE is documented with a remote attack vector; public disclosure is indicated. NVD lists CVSSv3.1 base score 5.4 (MEDIUM) wi...

5.4CVSS3.9AI score0.00129EPSS
Exploits0References5Affected Software1
CNNVD
CNNVDadded 2025/01/09 12:0 a.m.2 views

HouseRent 代码注入漏洞

HouseRent is a house rental management system by Mr.W individual developer. It provides an auto-caching JWK-Set HTTP client. A code injection vulnerability exists in HouseRent version 1.0, which stems from unknown code in the file /toAdminUpdateHousePage?hID=30 that can lead to cross-site scripti...

5.4CVSS4.8AI score0.00129EPSS
Exploits0References5
CNNVD
CNNVDadded 2024/08/12 12:0 a.m.3 views

Online Exam System 安全漏洞

Online Exam System is an online exam system by oretnom23 individual developers. A security vulnerability exists in Online Exam System v1.0, which originated when the /admin/update.php and /admin/dashboard.php pages were found to contain an access control vulnerability...

9.8CVSS6.5AI score0.00897EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/01/15 12:0 a.m.1 views

CXBSoft Url-shorting SQL Injection Vulnerability

CXBSoft Url-shorting is CXBSoft open source a library that can shorten the URL . CXBSoft Url-shorting 1.3.1 and previous versions of the existence of SQL injection vulnerability , the vulnerability stems from the file /admin/pages/updatego.php parameter version of the existence of SQL injection...

9.8CVSS8AI score0.00053EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/04/25 12:0 a.m.1 views

JIZHICMS 代码问题漏洞

JIZHICMS JIZHICMS is an open source Content Management System CMS from China's JIZHICMS Network Technology Company. A security vulnerability exists in JIZHICMS v1.9.5, which originates from a server-side request forgery SSRF vulnerability in /admin.php/Plugins/update.html...

9.8CVSS8.4AI score0.00316EPSS
Exploits1References3
CNVD
CNVDadded 2018/12/29 12:0 a.m.7 views

DouCo DouPHP Cross-Site Scripting Vulnerability (CNVD-2019-00999)

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/article.php?rec=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

4.8CVSS6AI score0.00235EPSS
Exploits1References1
OSV
OSVadded 2018/12/28 4:29 p.m.2 views

CVE-2018-20559

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/product.php?rec=update has XSS via the name parameter...

4.8CVSS5.8AI score0.00235EPSS
Exploits1References1
Rows per page
Query Builder