CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD•added 2025/12/10 9:31 p.m.•1 views

EUVD-2020-30844

Sony IPELA Network Camera 1.82.01 contains a stack buffer overflow vulnerability in the ftpclient.cgi endpoint that allows remote attackers to execute arbitrary code. Attackers can exploit the vulnerability by sending a crafted POST request with oversized data to the FTP client functionality,...

9.3CVSS8.3AI score0.00507EPSS

Exploits1References6

CNNVD•added 2025/12/10 12:0 a.m.•1 views

Sony IPELA Network Camera 缓冲区错误漏洞

Sony IPELA Network Camera is a webcam from Sony Japan. A buffer error vulnerability exists in Sony IPELA Network Camera version 1.82.01, which stems from a stack buffer overflow in the ftpclient.cgi endpoint that could lead to remote code execution...

9.8CVSS8.2AI score0.00507EPSS

Exploits1References5

Positive Technologies•added 2025/12/10 12:0 a.m.•4 views

PT-2025-50509

9.3CVSS8.8AI score0.00507EPSS

Exploits1References7

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-31565

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00024EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-27845

Malicious code in bioql PyPI...

8.7CVSS9.1AI score0.02025EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-30845

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.03203EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:19 p.m.•2 views

CVE-2022-38610

Garage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /garage/editclient.php...

7.2CVSS7.1AI score0.00274EPSS

Exploits1References1

RedhatCVE•added 2024/10/08 1:27 a.m.•7 views

CVE-2024-9621

A vulnerability was found in Quarkus CXF. Passwords and other secrets may appear in the application log in spite of the user configuring them to be hidden. This issue requires some special configuration to be vulnerable, such as SOAP logging enabled, application set client, and endpoint logging...

5.3CVSS5AI score0.00101EPSS

Exploits0References3

NVD•added 2024/06/27 9:15 p.m.•16 views

CVE-2024-36073

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the shadowing component of the Endpoint Protector and Unify agent which allows an attacker with administrative access to the Endpoint Protector or Unify server to...

7.2CVSS0.03127EPSS

Exploits0References1

Vulnrichment•added 2024/06/27 12:0 a.m.•8 views

CVE-2024-36073

8AI score0.03127EPSS

Exploits0References1

Positive Technologies•added 2023/07/19 12:0 a.m.•2 views

PT-2023-26014 · Creativeitem · Ekushey Project Manager Crm

Name of the Vulnerable Software and Affected Versions: Creativeitem Ekushey Project Manager CRM version 5.0 Description: A problematic vulnerability was found in the software, affecting an unknown function of the file /index.php/client/message/message read/xxxxxxxxrandom-msg-hash. The manipulatio...

6.1CVSS4.2AI score0.00075EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 3:46 a.m.•1 views

SUSE CVE-2021-22116

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugi...

5.9CVSS7.5AI score0.01026EPSS

Exploits0References8

Positive Technologies•added 2022/11/17 12:0 a.m.•2 views

PT-2022-26780 · Unknown · Online Diagnostic Lab Management System

Name of the Vulnerable Software and Affected Versions: Online Diagnostic Lab Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/clients/view client.php" API endpoint. Recommendations:...

7.2CVSS7.7AI score0.00274EPSS

Exploits1References5

Positive Technologies•added 2022/11/03 12:0 a.m.•1 views

PT-2022-26735 · Unknown · Online Diagnostic Lab Management System

7.2CVSS7AI score0.00274EPSS

Exploits1References4

Positive Technologies•added 2022/10/07 12:0 a.m.•1 views

PT-2022-26235 · Unknown · Online Diagnostic Lab Management System

Name of the Vulnerable Software and Affected Versions: Online Diagnostic Lab Management System version 1.0 Description: The issue concerns SQL Injection, which can be exploited via the "/diagnostic/editclient.php?id=" API endpoint. This allows for potential manipulation of database queries by...

7.2CVSS7.1AI score0.00274EPSS

Exploits1References2

ATTACKERKB•added 2022/05/19 9:15 p.m.•1 views

CVE-2022-28962

Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=deleteclient...

9.8CVSS6AI score0.00251EPSS

Exploits1References4

ATTACKERKB•added 2022/05/19 9:15 p.m.•0 views

CVE-2022-29652

Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=saveclient...

6.1CVSS6AI score0.00194EPSS

Exploits1References3

Positive Technologies•added 2022/05/19 12:0 a.m.•2 views

PT-2022-19757 · Unknown · Online Sports Complex Booking System

Name of the Vulnerable Software and Affected Versions: Online Sports Complex Booking System version 1.0 Description: The issue concerns SQL Injection via the "/scbs/classes/Users.php?f=save client" endpoint. This allows for potential manipulation of database queries, which could lead to...

6.1CVSS6.5AI score0.00194EPSS

Exploits1References4