CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-53494

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00264EPSS

Exploits1References1

ATTACKERKB•added 2022/06/15 5:15 p.m.•2 views

CVE-2022-32301

YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the IdList parameter at /App/Lib/Action/Home/ApiAction.class.php...

9.8CVSS5.7AI score0.00264EPSS

Exploits1References2

Positive Technologies•added 2022/06/15 12:0 a.m.•3 views

PT-2022-21218 · Unknown · Youdiancms

Name of the Vulnerable Software and Affected Versions: YoudianCMS version 9.5.0 Description: A SQL injection issue was discovered via the IdList parameter at the "/App/Lib/Action/Home/ApiAction.class.php" endpoint. This allows for potential exploitation. No information is provided about the...

9.8CVSS9.6AI score0.00264EPSS

Exploits1References4

seebug.org•added 2015/04/09 12:0 a.m.•43 views

大米CMS最新版一个参数引发多处sql注入，绕过防御(附验证脚本)

简要描述：过滤不严详细说明：出现注入的地方是在ApiAction.class.php文件ajaxarclist函数 function ajaxarclist $prefix = !empty$REQUEST'prefix'?bool$REQUEST'prefix':true; //表过滤防止泄露信息,只允许的表 if!inarray$REQUEST'model',array'article','type','ad','label','link'exit; if!empty$REQUEST'model' if$prefix == true $model =...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by