CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

208 matches found

OSV•added 2025/10/21 12:15 p.m.•1 views

CVE-2025-9428

Zohocorp ManageEngine Analytics Plus versions 6171 and prior are vulnerable to authenticated SQL Injection via the key update api...

8.8CVSS5.8AI score0.02303EPSS

Exploits0References1

EUVD•added 2025/10/14 7:30 p.m.•2 views

EUVD-2025-34454

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains authenticated SQL injection vulnerabilities affecting multiple parameters in the...

8.6CVSS7.8AI score0.05373EPSS

Exploits6References1

Positive Technologies•added 2025/10/14 12:0 a.m.•1 views

PT-2025-42185

Name of the Vulnerable Software and Affected Versions FreePBX Endpoint Manager versions prior to 16.0.92 FreePBX Endpoint Manager versions prior to 17.0.6 Description The FreePBX Endpoint Manager module contains authenticated SQL injection vulnerabilities affecting multiple parameters in the...

8.6CVSS8.8AI score0.05373EPSS

Exploits6References21

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-29504

Malicious code in bioql PyPI...

7.2CVSS7AI score0.00382EPSS

Exploits3References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-49439

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00117EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-44607

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00117EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-48819

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0011EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-48817

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00071EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-49440

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00129EPSS

Exploits1References2

Packet Storm•added 2025/09/23 12:0 a.m.•176 views

📄 Summer Employee Portal SQL Injection

Summer Employee Portal versions prior to 3.98.0 suffer from an authenticated remote SQL injection vulnerability. Exploit Title: Summar Employee Portal Prior to 3.98.0 Authenticated SQL Injection - CVE-2025-40677 Google Dork: inurl:"/MemberPages/quienesquien.aspx" Date: 09/22/2025 Exploit Author:...

8.7CVSS7.9AI score0.00182EPSS

Cvelist•added 2025/08/27 10:24 a.m.•3 views

CVE-2025-30059 Authenticated SQL injection in PrepareCDExportJSON.pl

In the PrepareCDExportJSON.pl service, the "getPerfServiceIds" function is vulnerable to SQL injection...

6.9CVSS0.00037EPSS

Exploits0References1

CVE•added 2025/08/06 11:48 p.m.•17 views

CVE-2025-54788

CVE-2025-54788 corresponds to a SQL injection in the SuiteCRM InboundEmail module. The issue allows arbitrary backend SQL queries, impacting confidentiality, integrity, and availability by enabling data retrieval, modification, or deletion. Affected: SuiteCRM (InboundEmail module) in versions pri...

8.8CVSS7.3AI score0.00395EPSS

Exploits0References2Affected Software1

NVD•added 2025/06/29 8:15 p.m.•3 views

CVE-2025-24290

Multiple Authenticated SQL Injection vulnerabilities found in UISP Application Version 2.4.206 and earlier could allow a malicious actor with low privileges to escalate privileges...

9.9CVSS0.00141EPSS

Exploits0References1

CNNVD•added 2025/06/29 12:0 a.m.•2 views

Ubiquiti UISP Application 安全漏洞

Ubiquiti UISP Application is an application used by Ubiquiti USA to manage and configure its network devices. A security vulnerability exists in Ubiquiti UISP Application version 2.4.206 and earlier, which stems from the presence of multiple authenticated SQL injection vulnerabilities that could...

9.9CVSS9.6AI score0.00141EPSS

Exploits0References2

OSV•added 2025/06/09 12:15 p.m.•0 views

CVE-2025-41444

Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the alerts module...

8.3CVSS5.8AI score0.03936EPSS

Exploits0References1

OSV•added 2025/06/09 11:15 a.m.•0 views

CVE-2025-27709

Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the Service Account Auditing reports...

8.3CVSS5.8AI score0.03936EPSS

Exploits0References1

RedhatCVE•added 2025/05/24 11:18 a.m.•12 views

CVE-2025-41403

Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection while fetching service account audit data...

8.3CVSS7.8AI score0.05251EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:17 a.m.•1 views

CVE-2023-23651

Auth. subscriber+ SQL Injection SQLi vulnerability in MainWP Google Analytics Extension plugin = 4.0.4 versions...

8.8CVSS9AI score0.00147EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:39 p.m.•4 views

CVE-2022-27908

Zoho ManageEngine OpManager before 125588 and before 125603 is vulnerable to authenticated SQL Injection in the Inventory Reports module...

8.8CVSS7.8AI score0.0459EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 9:3 p.m.•1 views

CVE-2021-24629

The Post Content XMLRPC WordPress plugin through 1.0 does not sanitise or escape multiple GET/POST parameters before using them in SQL statements in the admin dashboard, leading to an authenticated SQL Injections...

7.2CVSS7.4AI score0.00972EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by