Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

ATTACKERKB
ATTACKERKBadded 6 days ago8 views

CVE-2026-54222

UBB.threads is vulnerable to Blind SQL Injection, allowing attackers with access to the Members in Control Panel to interact with the underlying database. Due to insufficient input sanitization, an attacker can extract sensitive information, such as user credentials, by manipulating SQL queries...

8.6CVSS5.6AI score0.00305EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-7753

Malware in sbrugna...

9.8CVSS9.5AI score0.01358EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-6102

Malware in sbrugna...

4.9CVSS5.1AI score0.01178EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/06/05 10:3 a.m.16 views

CVE-2025-4568 SQL Injection in 2ClickPortal

Improper neutralization of input provided by an unauthorized user into changesreferenceid parameter in URL allows for boolean-based Blind SQL Injection attacks...

9.3CVSS0.00284EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/05 10:3 a.m.4 views

CVE-2025-4568 SQL Injection in 2ClickPortal

Improper neutralization of input provided by an unauthorized user into changesreferenceid parameter in URL allows for boolean-based Blind SQL Injection attacks...

9.3CVSS7.8AI score0.00284EPSS
Exploits0References2
NVD
NVDadded 2024/12/12 2:15 p.m.11 views

CVE-2024-50584

An authenticated attacker with the user/role "Poweruser" can perform an SQL injection by accessing the /class/templateio.php file and supplying malicious GET parameters. The "templates" parameter is vulnerable against blind boolean-based SQL injection attacks. SQL syntax must be injected into the...

4.4CVSS0.00284EPSS
Exploits0References3
CVE
CVEadded 2024/09/05 6:41 a.m.47 views

CVE-2024-6835

CVE-2024-6835 affects Ivory Search – WordPress Search Plugin, with information exposure in the ajax_load_posts path affecting all versions up to 5.5.6. Unauthenticated attackers could extract text from password-protected posts via a boolean-based attack on the AJAX search form. Public reviews/ent...

5.3CVSS5.6AI score0.00529EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2024/09/04 12:0 a.m.5 views

PT-2024-37894 · WordPress · The Ivory Search

Name of the Vulnerable Software and Affected Versions: The Ivory Search – WordPress Search Plugin versions up to, and including, 5.5.6 Description: The issue allows unauthenticated attackers to extract text data from password-protected posts using a boolean-based attack on the AJAX search form...

5.3CVSS7AI score0.00529EPSS
Exploits0References10
Hacker One
Hacker Oneadded 2019/03/09 2:1 p.m.11 views

50m-ctf: `Cody trolled us all` h1-702 CTF write-up

Premise I use not to play CTF challenges because they usually absorb me entirely. I cannot think of anything else but "I want that flag!". That said, this is going to be a long story: no princess, no dragoons, only a tweet. https://twitter.com/Hacker0x01/status/1100543680383832065 Level 0 - Nothi...

7.2AI score
Exploits0
Rows per page
Query Builder