CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 5 days ago•28 views

CVE-2017-20271 Joomla StreetGuessr Game 1.1.8 SQL Injection via catid

8.8CVSS0.00237EPSS

ATTACKERKB•added 5 days ago•5 views

CVE-2017-20271

8.8CVSS6.2AI score0.00237EPSS

Exploits0References2Affected Software1

EUVD•added 5 days ago•4 views

EUVD-2017-18998

8.8CVSS6.2AI score0.00237EPSS

CVE•added 5 days ago•8 views

CVE-2017-20271

Joomla StreetGuessr Game 1.1.8 is affected by an SQL injection via the catid parameter in index.php when using option=com_streetguess&view=maps. The vulnerability allows unauthenticated attackers to execute arbitrary SQL queries and exfiltrate data such as database version and names. Reported CVS...

8.8CVSS6.2AI score0.00237EPSS

EUVD•added 2026/03/26 12:30 p.m.•5 views

EUVD-2018-21673

Online Quiz Maker 1.0 contains SQL injection vulnerabilities in the catid and usern parameters that allow authenticated attackers to execute arbitrary SQL commands. Attackers can submit malicious POST requests to quiz-system.php or add-category.php with crafted SQL payloads in POST parameters to...

NVD•added 2026/03/26 12:16 p.m.•4 views

Exploits0References5

CVE-2018-25207

7.1CVSS0.0027EPSS

Vulnrichment•added 2026/03/26 11:39 a.m.•4 views

CVE-2018-25207 Online Quiz Maker 1.0 SQL Injection via catid Parameter

ATTACKERKB•added 2026/03/26 11:39 a.m.•2 views

CVE-2018-25207

Exploits0References4Affected Software1

Cvelist•added 2026/03/26 11:39 a.m.•22 views

CVE-2018-25207 Online Quiz Maker 1.0 SQL Injection via catid Parameter

7.1CVSS0.0027EPSS

CVE•added 2026/03/26 11:39 a.m.•5 views

CVE-2018-25207

Online Quiz Maker 1.0 is affected by SQL injection in the catid and usern parameters. The issue allows authenticated attackers to submit crafted SQL payloads via POST requests to quiz-system.php or add-category.php, potentially extracting sensitive data or bypassing authentication. The vulnerabil...

CNNVD•added 2026/03/26 12:0 a.m.•7 views

Hscripts Online Quiz Maker SQL注入漏洞

Hscripts Online Quiz Maker is an online quiz creation and management system developed by Hscripts Corporation. Version 1.0 of Hscripts Online Quiz Maker has a SQL injection vulnerability. This vulnerability stems from insufficient validation of the catid and usern parameters, which may lead to SQ...

7.1CVSS5.9AI score0.0027EPSS

Positive Technologies•added 2026/03/26 12:0 a.m.•5 views

PT-2026-28244

Name of the Vulnerable Software and Affected Versions Online Quiz Maker version 1.0 Description Authenticated attackers can execute arbitrary SQL commands due to SQL injection flaws. By submitting malicious POST requests to the endpoints "quiz-system.php" or "add-category.php" using crafted...

7.1CVSS6AI score0.0027EPSS

Exploits0References6

EUVD•added 2026/03/06 3:31 p.m.•4 views

EUVD-2018-21649

PlayJoom 0.10.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the catid parameter. Attackers can send GET requests to index.php with option=complayjoom&view=genre&catid=SQL to extract sensitive...

ATTACKERKB•added 2026/03/06 12:19 p.m.•3 views

Exploits0References3

CVE-2018-25197

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/06 12:19 p.m.•3 views

CVE-2018-25197 PlayJoom 0.10.1 SQL Injection via catid Parameter

CVE•added 2026/03/06 12:19 p.m.•13 views

CVE-2018-25197

PlayJoom 0.10.1 contains an unauthenticated SQL injection in the catid parameter of the genre view (GET request to index.php?option=com_playjoom&view=genre&catid=[SQL]). The root cause is improper handling of user-controlled input leading to arbitrary SQL queries, enabling extraction of database ...

Cvelist•added 2026/03/06 12:19 p.m.•28 views

CVE-2018-25197 PlayJoom 0.10.1 SQL Injection via catid Parameter

8.8CVSS0.00237EPSS

CNNVD•added 2026/03/06 12:0 a.m.•4 views

PlayJoom SQL注入漏洞

PlayJoom is a media management component within the Joomla website developed by the German company PlayJoom. Version 0.10.1 of PlayJoom has a SQL injection vulnerability. This vulnerability stems from an SQL injection issue with the catid parameter in the index.php file, which could allow...

Positive Technologies•added 2026/03/06 12:0 a.m.•6 views

PT-2026-23706

PlayJoom 0.10.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the catid parameter. Attackers can send GET requests to index.php with option=com playjoom&view=genre&catid=SQL to extract sensitive...