Lucene search
K

47 matches found

Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.12 views

PT-2026-45037

Summary modules/categories.php checks that the supplied type parameter ANN, EVT, ROL, USF, … corresponds to a module the actor administers. The follow-up "is this specific category editable by me" check at lines 56-61 is dead code because it compares $getType a category-type code against mode nam...

6.5CVSS5.9AI score0.00029EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/10 2:30 a.m.2 views

CVE-2026-6004

A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the file /delete-category.php. Performing a manipulation of the argument catid results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and m...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/03/25 11:13 p.m.13 views

CVE-2026-33914

OpenEMR (prior to 8.0.0.3) contains a blind SQL injection in the PostCalendar categoriesUpdate function. The malsicious code uses the dels POST parameter, which is read via pnVarCleanFromInput() (HTML tags stripped only) and directly interpolated into a raw SQL DELETE statement executed by Doctri...

7.2CVSS5.9AI score0.00425EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/02/10 5:43 p.m.15 views

CVE-2026-25993

EverShop (TypeScript-based eCommerce platform) is affected by a second-order SQL injection during category update/delete handling. The vulnerability stems from embedding path/request_path values, derived from the url_key stored in the database, into SQL statements via string concatenation that ar...

9.8CVSS5.8AI score0.0032EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/10 5:43 p.m.6 views

CVE-2026-25993 EverShop has a Second-Order SQL Injection in URL Rewrite Processing Derived from Category URL Keys

EverShop is a TypeScript-first eCommerce platform. During category update and deletion event handling, the application embeds path / requestpath values—derived from the urlkey stored in the database—into SQL statements via string concatenation and passes them to execute. As a result, if a malicio...

9.3CVSS5.8AI score0.0032EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.11 views

PT-2026-7418

Name of the Vulnerable Software and Affected Versions EverShop versions prior to 2.1.1 Description EverShop is a TypeScript-first eCommerce platform susceptible to a second-order SQL injection. During category update and deletion event handling, the application incorporates values from the url...

9.8CVSS5.8AI score0.0032EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/02/04 7:28 p.m.4 views

CVE-2026-25234

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

9.8CVSS5.7AI score0.00252EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-25234

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow a...

9.8CVSS5.7AI score0.00252EPSS
Exploits0References2
NVD
NVD
added 2026/02/03 7:16 p.m.13 views

CVE-2026-25234

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

9.8CVSS0.00252EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/03 7:16 p.m.3 views

CVE-2026-25234

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

9.8CVSS5.6AI score0.00252EPSS
Exploits0References2
OSV
OSV
added 2026/02/03 7:16 p.m.1 views

UBUNTU-CVE-2026-25234

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

9.8CVSS5.8AI score0.00252EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/03 6:29 p.m.5 views

CVE-2026-25234

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

5.3CVSS5.7AI score0.00252EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/03 6:29 p.m.3 views

CVE-2026-25234 PEAR is Vulnerable to SQL Injection in Category Deletion

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

5.3CVSS5.7AI score0.00252EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 6:29 p.m.2 views

EUVD-2026-5201

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

5.3CVSS5.7AI score0.00252EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 6:29 p.m.14 views

CVE-2026-25234

PEAR (PHP components framework) before version 1.33.0 is vulnerable to a SQL injection in the category deletion operation when an attacker can access the category manager workflow. The root cause is unsafely handling the category id in this workflow, enabling SQL injection. The issue has been fix...

9.8CVSS5.7AI score0.00252EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/03 6:29 p.m.32 views

CVE-2026-25234 PEAR is Vulnerable to SQL Injection in Category Deletion

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

5.3CVSS0.00252EPSS
Exploits0References1
OSV
OSV
added 2026/02/03 6:29 p.m.5 views

CVE-2026-25234 PEAR is Vulnerable to SQL Injection in Category Deletion

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

5.3CVSS5.7AI score0.00252EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.3 views

PT-2026-6283

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

9.8CVSS5.7AI score0.00252EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

pearweb SQL注入漏洞

PearWeb is a PHP extension and application repository developed by PEAR. Versions of PearWeb prior to 1.33.0 contained a SQL injection vulnerability. This vulnerability stemmed from the category deletion process, where an SQL injection could be exploited by attackers through the use of category I...

9.8CVSS5.8AI score0.00252EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/20 6:0 a.m.5 views

CVE-2025-12573 Bookingor <= 1.0.12 - Subscriber+ Category Deletion

The Bookingor WordPress plugin through 1.0.12 exposes authenticated AJAX actions without capability or nonce checks, allowing low-privileged users to delete Bookingor WordPress plugin through 1.0.12 data...

5.4AI score0.00174EPSS
Exploits0References1
Rows per page
Query Builder