Lucene search
+L

313 matches found

CNNVD
CNNVD
added 2026/03/06 12:0 a.m.7 views

PlayJoom SQL注入漏洞

PlayJoom is a media management component within the Joomla website developed by the German company PlayJoom. Version 0.10.1 of PlayJoom has a SQL injection vulnerability. This vulnerability stems from an SQL injection issue with the catid parameter in the index.php file, which could allow...

8.8CVSS6.1AI score0.00237EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/28 7:45 p.m.14 views

CVE-2019-25491

Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to the admin/cmsgetpagetitle.php endpoint with malicious catid values to extract sensitive...

8.8CVSS6AI score0.00321EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/27 6:31 p.m.7 views

EUVD-2019-19717

Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to the admin/cmsgetpagetitle.php endpoint with malicious catid values to extract sensitive...

8.8CVSS6AI score0.00321EPSS
Exploits1References4
NVD
NVD
added 2026/02/27 6:16 p.m.5 views

CVE-2019-25491

Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to the admin/cmsgetpagetitle.php endpoint with malicious catid values to extract sensitive...

8.8CVSS0.00321EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/27 5:23 p.m.4 views

CVE-2019-25491

Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to the admin/cmsgetpagetitle.php endpoint with malicious catid values to extract sensitive...

8.8CVSS6AI score0.00321EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/02/27 5:23 p.m.22 views

CVE-2019-25491 Homey BNB V4 SQL Injection via cms_getpagetitle.php

Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to the admin/cmsgetpagetitle.php endpoint with malicious catid values to extract sensitive...

8.8CVSS0.00321EPSS
Exploits1References3
CVE
CVE
added 2026/02/27 5:23 p.m.12 views

CVE-2019-25491

CVE-2019-25491 affects Homey BNB V4 and is a SQL injection vulnerability in the cms_getpagetitle.php endpoint. The attackable vector is the catid parameter, where an unauthenticated attacker can inject SQL to manipulate queries and extract sensitive data. Impact details are stated as database inf...

8.8CVSS6AI score0.00321EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/27 12:0 a.m.9 views

PT-2026-22359

Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to the admin/cms getpagetitle.php endpoint with malicious catid values to extract sensitive...

8.8CVSS6AI score0.00321EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.8 views

Doditsolutions Homey BNB SQL注入漏洞

Doditsolutions Homey BNB is a homestay reservation system operated by the Indian company Doditsolutions. Doditsolutions Homey BNB V4 has a SQL injection vulnerability; this vulnerability stems from the SQL injection vulnerability in the catid parameter, which may allow unverified attackers to...

8.8CVSS5.8AI score0.00321EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 12:19 p.m.6 views

CVE-2018-10135

iScripts eSwap v2.4 has Reflected XSS via the "catwiseproducts.php" catid parameter in the User Panel...

6.1CVSS5.9AI score0.00692EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:49 a.m.7 views

CVE-2020-24862

The catID parameter in Pharmacy Medical Store and Sale Point v1.0 has been found to be vulnerable to a Time-Based blind SQL injection via the /medical/inventories.php path which allows attackers to retrieve all databases...

7.5CVSS7.9AI score0.02051EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-2078

Malware in sbrugna...

7.5CVSS6.4AI score0.01139EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-0351

Malware in sbrugna...

4.3CVSS6.4AI score0.01117EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-1611

Malware in sbrugna...

7.5CVSS6.4AI score0.01056EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-1609

Malware in sbrugna...

7.5CVSS6.4AI score0.02266EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-1729

Malware in sbrugna...

7.5CVSS6.4AI score0.01133EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-1624

Malware in sbrugna...

7.5CVSS6.4AI score0.01195EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2010-0405

Malware in sbrugna...

4.3CVSS6.4AI score0.01445EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1434

Malware in sbrugna...

7.5CVSS6.4AI score0.00931EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-4245

Malware in sbrugna...

7.5CVSS6.4AI score0.01175EPSS
Exploits1References7
Rows per page
Query Builder