CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-37149

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00489EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 10:18 p.m.•3 views

CVE-2022-48325

Multiple Cross Site Scripting XSS vulnerabilities in Mapos 4.39.0 allow attackers to execute arbitrary code. Affects the following parameters: 1 year, 2 oldSenha, 3 novaSenha, 4 termo, 5 nome, 6 cnpj, 7 ie, 8 cep, 9 logradouro, 10 numero, 11 bairro, 12 cidade, 13 uf, 14 telefone, 15 email, 16 id,...

6.1CVSS6.7AI score0.00646EPSS

Exploits1References1

NVD•added 2025/04/09 4:15 p.m.•14 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

8.8CVSS0.002EPSS

Exploits1References2

Vulnrichment•added 2025/04/09 12:0 a.m.•8 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

7.6AI score0.002EPSS

Exploits1References2

Cvelist•added 2025/04/09 12:0 a.m.•7 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

0.002EPSS

Exploits1References2

NVD•added 2023/02/16 9:15 p.m.•9 views

CVE-2022-48324

Multiple Cross Site Scripting XSS vulnerabilities in Mapos 4.39.0 allow attackers to execute arbitrary code. Affects the following parameters: 1 pesquisa, 2 data, 3 data2, 4 nome, 5 descricao, 6 idDocumentos, 7 id in file application/controllers/Arquivos.php; 8 senha, 9 nomeCliente, 10 contato, 1...

6.1CVSS6.4AI score0.00975EPSS

Exploits1References3

NVD•added 2023/02/16 9:15 p.m.•14 views

CVE-2022-48325

6.1CVSS6.4AI score0.00646EPSS

Exploits1References3

Prion•added 2023/02/16 9:15 p.m.•9 views

Cross site scripting

Multiple Cross Site Scripting XSS vulnerabilities in Mapos 4.39.0 allow attackers to execute arbitrary code. Affects the following parameters: 1 nome, 2 aCliente, 3 eCliente, 4 dCliente, 5 vCliente, 6 aProduto, 7 eProduto, 8 dProduto, 9 vProduto, 10 aServico, 11 eServico, 12 dServico, 13 vServico...

5.8CVSS6.3AI score0.00975EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2023/02/16 12:0 a.m.•4 views

CVE-2022-48324

6.4AI score0.00975EPSS

Exploits1References3

OSV•added 2022/06/28 12:15 a.m.•8 views

CVE-2022-34134

Benjamin BALET Jorani v1.0 was discovered to contain a Cross-Site Request Forgery CSRF via the component /application/controllers/Users.php...

8.8CVSS7.5AI score

Exploits0References2

Github Security Blog•added 2021/10/04 8:13 p.m.•42 views

Cross-site scripting in application/controllers/dropbox.php in JustWriting

Cross-site scripting XSS vulnerability in application/controllers/dropbox.php in JustWriting 1.0.0 and below allow remote attackers to inject arbitrary web script or HTML via the challenge parameter...

6.1CVSS4.1AI score0.07609EPSS

Exploits0References4Affected Software1

Cvelist•added 2018/03/11 6:0 p.m.•11 views

CVE-2018-8057

A SQL Injection vulnerability exists in Western Bridge Cobub Razor 0.8.0 via the channelname or platform parameter in a /index.php?/manage/channel/addchannel request, related to /application/controllers/manage/channel.php...

9.8AI score0.05153EPSS

Exploits5References3

Prion•added 2012/08/26 3:17 a.m.•14 views

Sql injection

SQL injection vulnerability in application/controllers/invoice.php in NeoInvoice might allow remote attackers to execute arbitrary SQL commands via vectors involving the sortcol variable in the listitems function, a different vulnerability than CVE-2012-3477...

7.5CVSS8.7AI score0.00526EPSS

Exploits3References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by