CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

173 matches found

Vulnrichment•added 2026/04/02 1:48 p.m.•0 views

CVE-2026-35168 OpenSTAManager: SQL Injection via Aggiornamenti Module

OpenSTAManager is an open source management software for technical assistance and invoicing. Prior to version 2.10.2, the Aggiornamenti Updates module in OpenSTAManager contains a database conflict resolution feature op=risolvi-conflitti-database that accepts a JSON array of SQL statements via PO...

8.8CVSS6.2AI score0.00034EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2005-0538

Malware in sbrugna...

7.5CVSS6.4AI score0.00487EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-13045

Malware in sbrugna...

9.8CVSS9.4AI score0.00617EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-1440

Malware in sbrugna...

7.5CVSS6.4AI score0.01576EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2004-1616

Malware in sbrugna...

7.5CVSS6.4AI score0.00329EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2004-1602

Malware in sbrugna...

7.5CVSS6.4AI score0.00963EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2004-2048

Malware in sbrugna...

7.5CVSS6.4AI score0.00487EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-2779

Malware in sbrugna...

7.5CVSS6.4AI score0.00812EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-13549

Malware in sbrugna...

8.8CVSS8.7AI score0.01147EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-2068

Malware in sbrugna...

7.5CVSS6.4AI score0.01462EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2024-35305

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00062EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2024-34196

Malicious code in bioql PyPI...

10CVSS9.2AI score0.09775EPSS

Exploits0References1

Veracode•added 2025/08/04 6:4 a.m.•2 views

SQL Injection

eKuiper is vulnerable to SQL Injection. The vulnerability is due to failure to sanitize user-controlled table name input in the getLast API, allowing unauthenticated attackers to execute arbitrary SQL statements...

8.3AI score

Exploits0

RedhatCVE•added 2025/05/22 6:27 p.m.•3 views

CVE-2021-26762

SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the cid parameter to edit-course.php...

8.8CVSS8.6AI score0.01147EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:26 p.m.•3 views

CVE-2021-26232

SQL injection vulnerability in SourceCodester Simple College Website v 1.0 allows remote attackers to execute arbitrary SQL statements via the id parameter to news.php...

9.8CVSS8.6AI score0.00492EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:26 p.m.•3 views

CVE-2021-26231

SQL injection vulnerability in SourceCodester Fantastic Blog CMS v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to category.php...

9.8CVSS8.6AI score0.00617EPSS

Exploits1References1

Cvelist•added 2024/12/10 6:56 p.m.•9 views

CVE-2024-11773

SQL injection in the admin web console of Ivanti CSA before version 5.0.3 allows a remote authenticated attacker with admin privileges to run arbitrary SQL statements...

9.1CVSS0.0259EPSS

Exploits0References1

CISA KEV Catalog•added 2024/10/09 12:0 a.m.•39 views

Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability

Ivanti Cloud Services Appliance CSA contains a SQL injection vulnerability in the admin web console in versions prior to 5.0.2, which can allow a remote attacker authenticated as administrator to run arbitrary SQL statements...

7.2CVSS7.7AI score0.7926EPSS

In wildExploits0

NVD•added 2024/10/08 5:15 p.m.•12 views

CVE-2024-9379

SQL injection in the admin web console of Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to run arbitrary SQL statements...

7.2CVSS0.7926EPSS

Exploits0References2

CVE•added 2024/10/08 4:23 p.m.•224 views

CVE-2024-9379

Ivanti Cloud Services Appliance (CSA) admin web console contains a SQL injection vulnerability (CVE-2024-9379) in versions prior to 5.0.2. The issue allows a remote attacker with admin privileges to execute arbitrary SQL statements. Remediation per sources is to upgrade to Ivanti CSA version 5.0....

7.2CVSS6.8AI score0.7926EPSS

In wildExploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by