Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

61 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-0748

Malware in sbrugna...

7.5CVSS6.4AI score0.00432EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-2796

Malware in sbrugna...

4.3CVSS6.3AI score0.00507EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2006-6092

Malware in sbrugna...

7.5CVSS6.4AI score0.00912EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-0556

Malware in sbrugna...

7.5CVSS6.4AI score0.00859EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-0747

Malware in sbrugna...

7.5CVSS6.4AI score0.00968EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-0749

Malware in sbrugna...

7.5CVSS6.4AI score0.00432EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-0557

Malware in sbrugna...

4.3CVSS6.4AI score0.0668EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-5601

Malware in sbrugna...

4.3CVSS6.4AI score0.0055EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2008-0746

Malware in sbrugna...

5CVSS6.4AI score0.09819EPSS
Exploits1References8
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.12 views

CandyPress Store 3.5.2 14 openPolicy.asp policy Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21090/info CandyPress Store is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.15 views

CandyPress Store 3.5.2 14 prodList.asp brand Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21090/info CandyPress Store is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.29 views

candypress ecommerce suite 4.1.1.26 Multiple Vulnerabilities

No description provided by source. WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Title: CandyPress eCommerce suite Vendor: http://www.candypress.com/ Bugs: SQL Injection + XSS + Path Disclosure in CandyPress Vulnerable Version: 4.1.1.26 Exploit: Available Fix Available:...

7.1AI score
Exploits0
NVD
NVDadded 2008/02/13 1:0 a.m.10 views

CVE-2008-0738

Multiple SQL injection vulnerabilities in CandyPress CP 4.1.1.26, and earlier 4.1.x versions, allow remote attackers to execute arbitrary SQL commands via the 1 idcust parameter to a ajaxgetTiers.asp and b ajaxgetCust.asp in ajax/, and the 2 tableName parameter to c ajax/ajaxtableFields.asp. NOTE...

7.5CVSS8.2AI score0.00432EPSS
Exploits1References3
NVD
NVDadded 2008/02/13 1:0 a.m.8 views

CVE-2008-0739

SQL injection vulnerability in admin/SAshipFedExMeter.asp in CandyPress CP 4.1.1.26, and earlier 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the FedExAccount parameter...

7.5CVSS8.4AI score0.00432EPSS
Exploits1References3
Prion
Prionadded 2008/02/13 1:0 a.m.11 views

Sql injection

SQL injection vulnerability in admin/utilitiesConfigHelp.asp in CandyPress CP 4.1.1.26, and other 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the helpfield parameter...

7.5CVSS9AI score0.00968EPSS
Exploits1References7Affected Software1
NVD
NVDadded 2008/02/13 1:0 a.m.6 views

CVE-2008-0737

SQL injection vulnerability in admin/utilitiesConfigHelp.asp in CandyPress CP 4.1.1.26, and other 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the helpfield parameter...

7.5CVSS8.4AI score0.00968EPSS
Exploits1References7
NVD
NVDadded 2008/02/13 1:0 a.m.13 views

CVE-2008-0736

admin/SAshipFedExMeter.asp in CandyPress CP 4.1.1.26, and possibly other 4.x and 3.x versions, allows remote attackers to obtain the path via a certain value of the FedExAccount parameter...

5CVSS6.6AI score0.09819EPSS
Exploits1References7
Prion
Prionadded 2008/02/13 1:0 a.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in CandyPress CP 4.1.1.26, and earlier 4.1.x versions, allow remote attackers to execute arbitrary SQL commands via the 1 idcust parameter to a ajaxgetTiers.asp and b ajaxgetCust.asp in ajax/, and the 2 tableName parameter to c ajax/ajaxtableFields.asp. NOTE...

7.5CVSS9AI score0.00432EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2008/02/13 1:0 a.m.9 views

Sql injection

SQL injection vulnerability in admin/SAshipFedExMeter.asp in CandyPress CP 4.1.1.26, and earlier 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the FedExAccount parameter...

7.5CVSS9.1AI score0.00432EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2008/02/13 1:0 a.m.13 views

Path traversal

admin/SAshipFedExMeter.asp in CandyPress CP 4.1.1.26, and possibly other 4.x and 3.x versions, allows remote attackers to obtain the path via a certain value of the FedExAccount parameter...

5CVSS7.2AI score0.09819EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder