CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/12/27 12:5 a.m.•4 views

CVE-2025-66947

SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-detail.php via the editid GET parameter. An attacker can trigger controlled delays using SQL SLEEP to infer database contents. Successful exploitation may lead to full database compromise, especially...

6.5CVSS8AI score0.00011EPSS

Exploits2References1

NVD•added 2024/08/16 5:15 p.m.•9 views

CVE-2024-42995

VTiger CRM = 8.1.0 does not correctly check user privileges. A low-privileged user can interact directly with the "Migration" administrative module to disable arbitrary modules...

8.3CVSS0.00132EPSS

Exploits1References1

Vulnrichment•added 2024/08/16 12:0 a.m.•13 views

CVE-2024-42995

VTiger CRM = 8.1.0 does not correctly check user privileges. A low-privileged user can interact directly with the "Migration" administrative module to disable arbitrary modules...

7AI score0.00132EPSS

Exploits1References1

CVE•added 2024/08/16 12:0 a.m.•39 views

CVE-2024-42995

VTiger CRM

8.3CVSS6.7AI score0.00132EPSS

Exploits1References1Affected Software1

Securelist•added 2018/10/19 10:0 a.m.•79 views

DarkPulsar

In March 2017, the ShadowBrokers published a chunk of stolen data that included two frameworks: DanderSpritz and FuzzBunch. DanderSpritz consists entirely of plugins to gather intelligence, use exploits and examine already controlled machines. It is written in Java and provides a graphical window...

0.1AI score

Exploits0

0day.today•added 2017/04/02 12:0 a.m.•34 views

dnaLIMS Admin Module Command Execution Exploit

Usage Info msf use exploit/linux/http/dnalimsadminexec msf exploitdnalimsadminexec show targets ...targets... msf exploitdnalimsadminexec set TARGET msf exploitdnalimsadminexec show options ...show and set options... msf exploitdnalimsadminexec exploit This module requires Metasploit:...

10CVSS9.2AI score0.8373EPSS

Exploits9

seebug.org•added 2014/07/01 12:0 a.m.•29 views

Openfire 3.6.4 - Multiple CSRF Vulnerabilities

No description provided by source. Title: Multiple CSRF Vulnerabilities in Openfire 3.6.4 Administrative Section ------------------------------------------------------------------------ ------------------------------------------------------------------------ -- Project: Openfire Severity: High...

7.1AI score

Exploits0

Packet Storm•added 2012/07/12 12:0 a.m.•42 views

GLPI 0.83.2 Cross Site Request Forgery

Hi, This is regarding multiple CSRF Cross Site Request Forgery Vulnerabilities in GLPI Version 0.83.2. The following is the disclosure document: Title: Multiple CSRF Vulnerabilities in GLPI Version 0.83.2 ------------------------------------------------------------------------...

0.9AI score

Exploits0

Exploit DB•added 2011/01/06 12:0 a.m.•31 views

Openfire 3.6.4 - Multiple Cross-Site Request Forgery Vulnerabilities

Title: Multiple CSRF Vulnerabilities in Openfire 3.6.4 Administrative Section ------------------------------------------------------------------------ ------------------------------------------------------------------------ -- Project: Openfire Severity: High Versions: 3.6.4 other versions may be...

7.4AI score

Exploits0

exploitpack•added 2011/01/06 12:0 a.m.•34 views

Openfire 3.6.4 - Multiple Cross-Site Request Forgery Vulnerabilities

Openfire 3.6.4 - Multiple Cross-Site Request Forgery Vulnerabilities Title: Multiple CSRF Vulnerabilities in Openfire 3.6.4 Administrative Section ------------------------------------------------------------------------ ------------------------------------------------------------------------ --...

0.4AI score

Exploits0