CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2006-4041

Malware in sbrugna...

7.5CVSS6.4AI score0.00911EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-9055

Malware in sbrugna...

4.8CVSS5.2AI score0.00295EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 10:31 a.m.•3 views

CVE-2024-42772

An Incorrect Access Control vulnerability was found in /admin/rooms.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to view valid hotel room entries in administrator section...

7.5CVSS6.9AI score0.00335EPSS

Exploits1References1

NVD•added 2024/08/22 5:15 p.m.•10 views

CVE-2024-42772

7.5CVSS0.00335EPSS

Exploits1References2

Vulnrichment•added 2024/08/22 12:0 a.m.•12 views

CVE-2024-42772

6.9AI score0.00335EPSS

Exploits1References2

Cvelist•added 2024/08/22 12:0 a.m.•10 views

CVE-2024-42772

0.00335EPSS

Exploits1References2

CVE•added 2024/08/22 12:0 a.m.•45 views

CVE-2024-42772

CVE-2024-42772 is a broken access control vulnerability in Kashipara Hotel Management System v1.0. An unauthenticated attacker can access /admin/rooms.php to view valid hotel room entries in the administrator interface, due to an incorrect access control check. The issue affects the administrator...

7.5CVSS6.8AI score0.00335EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2024/08/22 12:0 a.m.•11 views

CVE-2024-42773

An Incorrect Access Control vulnerability was found in /admin/editroomcontroller.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to edit the valid hotel room entries in the administrator section...

7AI score0.00322EPSS

Exploits1References2

Prion•added 2020/06/22 10:15 p.m.•10 views

Code injection

downloadFile.ashx in the Administrator section of the Surveillance module in Global RADAR BSA Radar 1.6.7234.24750 and earlier allows users to download transaction files. When downloading the files, a user is able to view local files on the web server by manipulating the FileName and FilePath...

4CVSS4.3AI score0.09307EPSS

Exploits4References3Affected Software1

Prion•added 2018/09/21 7:29 a.m.•10 views

Cross site scripting

Stored XSS exists in CuppaCMS through 2018-09-03 via an administrator//component/tablemanager/view/cumenus section name...

3.5CVSS4.8AI score0.00295EPSS

Exploits1References2Affected Software1

Cvelist•added 2018/09/21 6:0 a.m.•16 views

CVE-2018-17300

Stored XSS exists in CuppaCMS through 2018-09-03 via an administrator//component/tablemanager/view/cumenus section name...

4.9AI score0.00295EPSS

Exploits1References2

seebug.org•added 2016/12/16 12:0 a.m.•39 views

phpBB 2.0.23 - From Variable Tampering to SQL Injection

Case Study Variable Tampering Among others, RIPS reported a variable tampering issue in the style configuration page for administrators. The GET parameter installto is used as the name of a variable. admin/adminstyles.php $installto = isset$HTTPGETVARS'installto' ? urldecode$HTTPGETVARS'installto...

8AI score

Exploits0

0day.today•added 2010/06/18 12:0 a.m.•30 views

Joomla Component com_joomdocs XSS Vulnerability

Exploit for php platform in category web applications =============================================== Joomla Component comjoomdocs XSS Vulnerability =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

7.1AI score

Exploits0

Cvelist•added 2006/08/08 11:0 p.m.•14 views

CVE-2006-3583

Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web sessions via a crafted link and the administrator section...

6.5AI score0.01304EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by