CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-21810

Malware in sbrugna...

8.1CVSS8.1AI score0.01236EPSS

Exploits1References5

RedhatCVE•added 2025/05/22 4:36 p.m.•5 views

CVE-2020-29437

SQL injection in the Buzz module of OrangeHRM through 4.6 allows remote authenticated attackers to execute arbitrary SQL commands via the orangehrmBuzzPlugin/lib/dao/BuzzDao.php loadMorePostsFormprofileUserId parameter to the buzz/loadMoreProfile endpoint...

8.1CVSS8.4AI score0.01236EPSS

Exploits1

OSV•added 2021/01/05 9:15 p.m.•15 views

CVE-2020-29437

8.1CVSS8.6AI score

Exploits0References4

Prion•added 2021/01/05 9:15 p.m.•16 views

Sql injection

5.5CVSS8.4AI score0.01236EPSS

Exploits1References4Affected Software1

CVE•added 2021/01/05 8:30 p.m.•43 views

CVE-2020-29437

CVE-2020-29437 describes an SQL injection in the Buzz module of OrangeHRM (up to version 4.6) that allows remote authenticated attackers to execute arbitrary SQL commands via the loadMorePostsForm[profileUserId] parameter to the buzz/loadMoreProfile endpoint. The underlying issue is unvalidated i...

8.1CVSS8.4AI score0.01236EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by