CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

173 matches found

Vulnrichment•added 2026/04/02 1:48 p.m.•1 views

CVE-2026-35168 OpenSTAManager: SQL Injection via Aggiornamenti Module

OpenSTAManager is an open source management software for technical assistance and invoicing. Prior to version 2.10.2, the Aggiornamenti Updates module in OpenSTAManager contains a database conflict resolution feature op=risolvi-conflitti-database that accepts a JSON array of SQL statements via PO...

8.8CVSS6.2AI score0.00668EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2004-1602

Malware in sbrugna...

7.5CVSS6.4AI score0.01531EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-2779

Malware in sbrugna...

7.5CVSS6.4AI score0.01212EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-13549

Malware in sbrugna...

8.8CVSS8.7AI score0.02265EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-13045

Malware in sbrugna...

9.8CVSS9.4AI score0.01735EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2002-1440

Malware in sbrugna...

7.5CVSS6.4AI score0.01246EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2004-2048

Malware in sbrugna...

7.5CVSS6.4AI score0.0123EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-2068

Malware in sbrugna...

7.5CVSS6.4AI score0.01137EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2005-0538

Malware in sbrugna...

7.5CVSS6.4AI score0.01208EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2004-1616

Malware in sbrugna...

7.5CVSS6.4AI score0.02391EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-35305

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00512EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-34196

Malicious code in bioql PyPI...

10CVSS9.2AI score0.23598EPSS

Exploits0References1

Veracode•added 2025/08/04 6:4 a.m.•2 views

SQL Injection

eKuiper is vulnerable to SQL Injection. The vulnerability is due to failure to sanitize user-controlled table name input in the getLast API, allowing unauthenticated attackers to execute arbitrary SQL statements...

8.3AI score

Exploits0

RedhatCVE•added 2025/05/22 6:27 p.m.•4 views

CVE-2021-26762

SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the cid parameter to edit-course.php...

8.8CVSS8.6AI score0.02265EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:26 p.m.•3 views

CVE-2021-26232

SQL injection vulnerability in SourceCodester Simple College Website v 1.0 allows remote attackers to execute arbitrary SQL statements via the id parameter to news.php...

9.8CVSS8.6AI score0.02705EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:26 p.m.•4 views

CVE-2021-26231

SQL injection vulnerability in SourceCodester Fantastic Blog CMS v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to category.php...

9.8CVSS8.6AI score0.01536EPSS

Exploits1References1

Cvelist•added 2024/12/10 6:56 p.m.•20 views

CVE-2024-11773

SQL injection in the admin web console of Ivanti CSA before version 5.0.3 allows a remote authenticated attacker with admin privileges to run arbitrary SQL statements...

9.1CVSS0.23598EPSS

Exploits0References1

CISA KEV Catalog•added 2024/10/09 12:0 a.m.•41 views

Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability

Ivanti Cloud Services Appliance CSA contains a SQL injection vulnerability in the admin web console in versions prior to 5.0.2, which can allow a remote attacker authenticated as administrator to run arbitrary SQL statements...

7.2CVSS7.7AI score0.43583EPSS

In wildExploits0

NVD•added 2024/10/08 5:15 p.m.•14 views

CVE-2024-9379

SQL injection in the admin web console of Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to run arbitrary SQL statements...

7.2CVSS0.43583EPSS

Exploits0References2

CVE•added 2024/10/08 4:23 p.m.•234 views

CVE-2024-9379

Ivanti Cloud Services Appliance (CSA) admin web console contains a SQL injection vulnerability (CVE-2024-9379) in versions prior to 5.0.2. The issue allows a remote attacker with admin privileges to execute arbitrary SQL statements. Remediation per sources is to upgrade to Ivanti CSA version 5.0....

7.2CVSS6.8AI score0.43583EPSS

In wildExploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by