CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-10020

Malware in sbrugna...

9.8CVSS9.5AI score0.01844EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-10019

Malware in sbrugna...

9.8CVSS9.5AI score0.01844EPSS

Exploits0References3

OSV•added 2019/04/25 8:29 p.m.•0 views

CVE-2018-18285

SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the login interface. A successful exploit could allow an attacker to extract sensitive information from the database...

9.8CVSS6AI score

Exploits0References2

NVD•added 2019/04/25 8:29 p.m.•16 views

CVE-2018-18285

9.8CVSS10AI score0.01844EPSS

Exploits0References2

Prion•added 2019/04/25 8:29 p.m.•14 views

Sql injection

7.5CVSS9.8AI score0.01844EPSS

Exploits0References2Affected Software1

Prion•added 2019/04/25 7:29 p.m.•13 views

Sql injection

SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the changepwd interface. A successful exploit could allow an attacker to extract sensitive information from the...

7.5CVSS9.8AI score0.01844EPSS

Exploits0References2Affected Software1

NVD•added 2019/04/25 7:29 p.m.•15 views

CVE-2018-18286

SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the changepwd interface. A successful exploit could allow an attacker to extract sensitive information from the...

9.8CVSS10AI score0.01844EPSS

Exploits0References2

OSV•added 2019/04/25 7:29 p.m.•2 views

CVE-2018-18286

SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the changepwd interface. A successful exploit could allow an attacker to extract sensitive information from the...

9.8CVSS6AI score0.01844EPSS

Exploits0References2

Cvelist•added 2019/04/25 7:12 p.m.•15 views

CVE-2018-18285

10AI score0.01844EPSS

Exploits0References2

CVE•added 2019/04/25 7:12 p.m.•40 views

CVE-2018-18285

CVE-2018-18285 affects CMG Suite up to version 8.4 SP2. The vulnerability is a SQL injection in the login interface caused by insufficient input validation, allowing an unauthenticated attacker to extract sensitive data from the database and, in some cases, execute arbitrary scripts. The NVD metr...

9.8CVSS9.8AI score0.01844EPSS

Exploits0References2Affected Software1

CVE•added 2019/04/25 6:57 p.m.•44 views

CVE-2018-18286

CVE-2018-18286 affects CMG Suite 8.4 SP2 and earlier. The vulnerability arises from insufficient input validation in the changepwd interface, enabling an unauthenticated attacker to perform SQL injection. Consequences described include extraction of sensitive database data and execution of arbitr...

9.8CVSS9.8AI score0.01844EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/04/25 6:57 p.m.•13 views

CVE-2018-18286

SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the changepwd interface. A successful exploit could allow an attacker to extract sensitive information from the...

10AI score0.01844EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by