Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

249 matches found

GithubExploit
GithubExploitadded 4 hours ago12 views

Exploit for SQL Injection in Wpdeveloper Notificationx

CVE-2024-1698 – NotificationX WordPress Plugin SQL Injection...

9.8CVSS7.4AI score0.93658EPSS
Exploits3
EUVD
EUVDadded 2026/05/19 1:21 p.m.3 views

EUVD-2025-209893

A Stored HTML Injection vulnerability was discovered in the Users functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can create a malicious user whose username contains HTML tags. When a victim attempts to delete a group containing...

5.9CVSS5.8AI score0.00029EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/26 12:0 a.m.2 views

Code-Projects Online Food Ordering System SQL注入漏洞

Code-Projects Online Food Ordering System is an open-source online meal ordering system developed by Code-Projects. Version 1.0 of the Code-Projects Online Food Ordering System has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the Username parameter in the...

7.5CVSS7.2AI score0.00014EPSS
Exploits0References5
NVD
NVDadded 2026/03/11 5:16 p.m.0 views

CVE-2025-67039

An issue was discovered in Lantronix EDS3000PS 3.1.0.0R2. The authentication on management pages can be bypassed by appending a specific suffix to the URL and by sending an Authorization header that uses "admin" as the username...

9.1CVSS0.00067EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/12/30 12:0 a.m.2 views

itsourcecode Society Management System SQL注入漏洞

itsourcecode Society Management System is an itsourcecode open source society management system. A SQL injection vulnerability exists in version 1.0 of itsourcecode Society Management System, which stems from incorrect manipulation of the parameter Username in the file /admin/addadmin.php, which...

9.8CVSS7.9AI score0.0002EPSS
Exploits1References5
CNVD
CNVDadded 2025/12/10 12:0 a.m.2 views

Simple Shopping Cart adminlogin.php File SQL Injection Vulnerability

Simple Shopping Cart is a simple shopping cart system. Simple Shopping Cart suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter adminusername in the file /adminlogin.php. An attacker can exploit this...

9.8CVSS7.8AI score0.00028EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/12/08 12:0 a.m.4 views

PT-2025-49555

Name of the Vulnerable Software and Affected Versions code-projects Simple Shopping Cart version 1.0 Description A flaw exists in code-projects Simple Shopping Cart version 1.0 that allows for remote SQL injection. The issue is located in the file '/adminlogin.php', specifically through...

9.8CVSS7.6AI score0.00028EPSS
Exploits1References11
CNNVD
CNNVDadded 2025/12/08 12:0 a.m.1 views

Code-Projects Simple Shopping Cart 安全漏洞

Simple Shopping Cart is a simple shopping cart system. Simple Shopping Cart suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter adminusername in the file /adminlogin.php. An attacker can exploit this...

9.8CVSS7.8AI score0.00028EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/12/05 3:27 p.m.2 views

CVE-2025-63362

Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to set the Administrator password and username as blank values, allowing attackers to bypass authentication...

9.8CVSS7AI score0.00148EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/11/20 9:36 p.m.1 views

CVE-2025-13315

Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw. An unauthenticated attacker can bypass web service API authentication controls to leak a log file and read the administrator's username and encrypted password...

9.8CVSS7.1AI score0.83986EPSS
Exploits3References1
Vulnrichment
Vulnrichmentadded 2025/11/19 5:41 p.m.2 views

CVE-2025-13315 Unauthenticated log access in Twonky Server

Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw. An unauthenticated attacker can bypass web service API authentication controls to leak a log file and read the administrator's username and encrypted password...

9.3CVSS6.7AI score0.83986EPSS
Exploits3References1
Cvelist
Cvelistadded 2025/11/19 5:41 p.m.393 views

CVE-2025-13315 Unauthenticated log access in Twonky Server

Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw. An unauthenticated attacker can bypass web service API authentication controls to leak a log file and read the administrator's username and encrypted password...

9.3CVSS0.83986EPSS
Exploits3References1
Positive Technologies
Positive Technologiesadded 2025/11/19 12:0 a.m.20 views

PT-2025-47536

Name of the Vulnerable Software and Affected Versions Campcodes Online Hospital Management System version 1.0 Description The Campcodes Online Hospital Management System version 1.0 is susceptible to SQL Injection. This issue affects the admin panel and specifically occurs through the username...

7.2AI score0.00044EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/11/18 12:11 a.m.2 views

CVE-2024-44662

PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the username parameter in the admin page...

6.5CVSS8AI score0.00037EPSS
Exploits1References1
NVD
NVDadded 2025/11/17 7:16 p.m.2 views

CVE-2024-44662

PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the username parameter in the admin page...

6.5CVSS0.00037EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/11/17 12:0 a.m.3 views

PT-2025-47198

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Shopping Portal version 2.0 Description The PHPGurukul Online Shopping Portal version 2.0 is susceptible to SQL Injection. This issue affects the username parameter within the admin page. Exploitation of this flaw could allow...

6.5CVSS7.1AI score0.00037EPSS
Exploits1References6
CVE
CVEadded 2025/11/17 12:0 a.m.5 views

CVE-2024-44662

The CVE-2024-44662 entry applies to PHPGurukul Online Shopping Portal 2.0, where the admin page’s username parameter is vulnerable to SQL Injection. The root cause is lack of input validation/sanitization allowing attacker-supplied SQL to be executed, potentially exposing data. Public references ...

6.5CVSS7.6AI score0.00037EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2025/11/17 12:0 a.m.1 views

PHPGurukul Online Shopping Portal 安全漏洞

Online Shopping Portal is an online store system. A SQL injection vulnerability exists in Online Shopping Portal due to a lack of validation of an externally entered SQL statement in the username parameter of the admin page. An attacker can exploit this vulnerability to execute illegal SQL comman...

6.5CVSS8.2AI score0.00037EPSS
Exploits1References3
GithubExploit
GithubExploitadded 2025/10/19 11:52 a.m.227 views

Exploit for SQL Injection in Cmsmadesimple Cms_Made_Simple

CMS Made Simple ⚠️ Disclaimer: This script is for edu...

8.1CVSS8.1AI score0.92556EPSS
Exploits35
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-6627

Malware in sbrugna...

5.8CVSS6.4AI score0.00092EPSS
Exploits0References5
Rows per page
Query Builder