CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Positive Technologies•added 2026/02/08 12:0 a.m.•4 views

PT-2026-6956

Name of the Vulnerable Software and Affected Versions code-projects Online Music Site version 1.0 Description A security flaw exists in code-projects Online Music Site version 1.0, specifically in the processing of the file /Administrator/PHP/AdminUpdateCategory.php. Manipulation of the txtcat...

9.8CVSS7.2AI score0.00323EPSS

Exploits1References10

NVD•added 2026/01/28 9:16 p.m.•6 views

CVE-2026-1533

A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminAddCategory.php. The manipulation results in sql injection. The attack may be performed from remote. The exploit has been released to the...

9.8CVSS0.0036EPSS

Exploits1References5

ATTACKERKB•added 2026/01/04 9:32 a.m.•3 views

CVE-2026-0577

A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /handgunner-administrator/prod.php. Executing a manipulation can lead to unrestricted upload. It is possible to launch the attack remotely. The...

9.8CVSS6.1AI score0.00309EPSS

Exploits1References6Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-17289

Malware in sbrugna...

7.2CVSS7AI score0.27466EPSS

Exploits0References3

CNVD•added 2025/09/29 12:0 a.m.•4 views

Online Bidding System bidlist.php File SQL Injection Vulnerability

Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID of the file /administrator/bidlist.php. An attacker can exploit this vulnerability...

9.8CVSS8.2AI score0.00441EPSS

Exploits1References1

OSV•added 2025/09/23 6:15 a.m.•2 views

CVE-2025-10841

A security vulnerability has been detected in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/weweee.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly...

9.8CVSS5.8AI score0.0055EPSS

Exploits1References5

Vulnrichment•added 2025/09/02 10:32 p.m.•3 views

CVE-2025-9839 itsourcecode Student Information Management System index.php sql injection

A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possibl...

7.5CVSS6.6AI score0.00387EPSS

Exploits1References5

CNVD•added 2025/06/27 12:0 a.m.•2 views

Simple Online Hotel Reservation System checkout_query.php File SQL Injection Vulnerability

Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter transactionid in the file...

9.8CVSS8.3AI score0.00394EPSS

Exploits1References1

CNNVD•added 2024/04/09 12:0 a.m.•3 views

Online Graduate Tracer System SQL注入漏洞

Online Graduate Tracer System is an online graduate tracer system by the individual developer Carlo Montero. A SQL injection vulnerability exists in Sourcecodester Online Graduate Tracer System v1.0, which originates from the id parameter in admin/admincs.php, which is susceptible to SQL injectio...

7.5CVSS7.9AI score0.00652EPSS

Exploits1References2

OSV•added 2022/04/26 2:15 p.m.•3 views

CVE-2022-27985

CuppaCMS v1.0 was discovered to contain a SQL injection vulnerability via /administrator/alerts/alertLightbox.php...

9.8CVSS7.3AI score0.06922EPSS

Exploits1References3

BDU FSTEC•added 2021/06/09 12:0 a.m.•7 views

The vulnerability of the database update module of the WorkFlow system in the Engineering Data Management and Product Lifecycle Management system LOCMAN:PLM lies in the possibility of unlimited loading of dangerous files, allowing attackers to execute arbitrary code.

The vulnerability of the database update module of the LOCsman:PLM engineering data and product lifecycle management system is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow an attacker to execute arbitrary code by replacing the dll library version.dl...

6.8CVSS6AI score

Exploits0Affected Software1

seebug.org•added 2008/09/14 12:0 a.m.•10 views

FoT Video scripti 1.1b (oyun) Remote SQL Injection Vulnerability

No description provided by source. Author : By CrackersChild Contact: [email protected] Greetz : biyosecurity.com & milw0rm.com & tryag.cc & All My Friends Script : FoT Video scripti V1.1 Beta Exploit : For username you can read username on title...

7.1AI score

Exploits0

exploitpack•added 2008/09/13 12:0 a.m.•19 views

FoT Video scripti 1.1b - oyun SQL Injection

FoT Video scripti 1.1b - oyun SQL Injection Author : By CrackersChild Contact: [email protected] Greetz : biyosecurity.com & milw0rm.com & tryag.cc & All My Friends Script : FoT Video scripti V1.1 Beta Exploit : For username you can read username on title...

1.4AI score

Exploits0

Exploit DB•added 2008/09/13 12:0 a.m.•47 views

FoT Video scripti 1.1b - 'oyun' SQL Injection

Author : By CrackersChild Contact: [email protected] Greetz : biyosecurity.com & milw0rm.com & tryag.cc & All My Friends Script : FoT Video scripti V1.1 Beta Exploit : For username you can read username on title...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by