Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

EUVD
EUVDadded 2026/04/12 3:30 p.m.2 views

EUVD-2019-20131

CMSsite 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to category.php with malicious catid values to extract sensitive database information includi...

8.8CVSS5.9AI score0.00304EPSS
Exploits1References4
NVD
NVDadded 2026/04/12 1:16 p.m.0 views

CVE-2019-25697

CMSsite 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the catid parameter. Attackers can send GET requests to category.php with malicious catid values to extract sensitive database information includi...

9.8CVSS0.00304EPSS
Exploits1References3
EUVD
EUVDadded 2026/04/05 9:30 p.m.0 views

EUVD-2019-20099

CMSsite 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious HTML forms. Attackers can trick authenticated administrators into visiting crafted pages that submit POST requests to the users.php endpoint...

5.3CVSS5.9AI score0.00016EPSS
Exploits1References4
NVD
NVDadded 2026/04/05 9:16 p.m.1 views

CVE-2019-25682

CMSsite 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious HTML forms. Attackers can trick authenticated administrators into visiting crafted pages that submit POST requests to the users.php endpoint...

5.3CVSS0.00016EPSS
Exploits1References3
NVD
NVDadded 2026/04/05 9:16 p.m.1 views

CVE-2019-25674

CMSsite 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'post' parameter. Attackers can send GET requests to post.php with malicious 'post' values to extract sensitive database information or perfor...

9.8CVSS0.00304EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/04/05 8:45 p.m.16 views

CVE-2019-25682 CMSsite 1.0 Cross-Site Request Forgery via users.php

CMSsite 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious HTML forms. Attackers can trick authenticated administrators into visiting crafted pages that submit POST requests to the users.php endpoint...

5.3CVSS0.00016EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2026/04/05 8:45 p.m.1 views

CVE-2019-25682 CMSsite 1.0 Cross-Site Request Forgery via users.php

CMSsite 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious HTML forms. Attackers can trick authenticated administrators into visiting crafted pages that submit POST requests to the users.php endpoint...

5.3CVSS5.9AI score0.00016EPSS
Exploits1References3
CVE
CVEadded 2026/04/05 8:45 p.m.3 views

CVE-2019-25682

CMSsite 1.0 contains a cross-site request forgery (CSRF) vulnerability in users.php that allows authenticated administrators to be tricked into submitting POST requests (e.g., source=add_user, source=edit_user, or del=1) to create, modify, or delete admin accounts. The attack is network-based wit...

5.3CVSS5.9AI score0.00016EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/05 8:45 p.m.0 views

CVE-2019-25674 CMSsite 1.0 SQL Injection via post Parameter

CMSsite 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'post' parameter. Attackers can send GET requests to post.php with malicious 'post' values to extract sensitive database information or perfor...

8.8CVSS6AI score0.00304EPSS
Exploits1References3
Packet Storm
Packet Stormadded 2023/08/01 12:0 a.m.215 views

CMSsite 1.0 Privilege Escalation

==================================================================================================================================== | Title : CMSsite v1.0 privilege escalation Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 65.0.1 32-bit...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2020/08/06 12:0 a.m.282 views

Victor CMS 1.0 - 'Search' SQL Injection

Exploit Title: Victor CMS 1.0 - 'Search' SQL Injection Date: 2020-08-04 Exploit Author: Edo Maland Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: XAMPP / Windows 10...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2019/03/04 12:0 a.m.22 views

CMSsite 1.0 - Multiple Cross-Site Request Forgery

CMSsite 1.0 - Multiple Cross-Site Request Forgery Exploit Title: CMSsite 1.0 - Cross-Site Request Forgery Delete Admin Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: March 1, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link :...

0.5AI score
Exploits0
Packet Storm
Packet Stormadded 2019/03/01 12:0 a.m.117 views

CMSsite 1.0 Cross Site Request Forgery

Exploit Title: CMSsite 1.0 - Cross-Site Request Forgery Delete Admin Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: March 1, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link : https://github.com/VictorAlagwu/CMSsite/archive/master.zi...

0.5AI score
Exploits0
Packet Storm
Packet Stormadded 2019/02/18 12:0 a.m.25 views

CMSsite 1.0 post.php SQL Injection

Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link : https://github.com/VictorAlagwu/CMSsite/archive/master.zip Tested Versio...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2019/02/18 12:0 a.m.11 views

CMSsite 1.0 - post SQL Injection

CMSsite 1.0 - post SQL Injection Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link :...

8.7AI score
Exploits0
0day.today
0day.todayadded 2019/02/18 12:0 a.m.24 views

CMSsite 1.0 - post SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link :...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2019/02/18 12:0 a.m.47 views

CMSsite 1.0 - 'post' SQL Injection

Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link : https://github.com/VictorAlagwu/CMSsite/archive/master.zip Tested Versio...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2019/01/29 12:0 a.m.127 views

CMSsite 1.0 SQL Injection

Exploit Title: CMSsite 1.0 - 'search' SQL injection Exploit Author : Majid kalantari [email protected] Date: 2019-01-27 Vendor Homepage : https://github.com/VictorAlagwu/CMSsite Software link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Windows 10 CVE: N/A...

Exploits0
Packet Storm
Packet Stormadded 2019/01/29 12:0 a.m.58 views

CMSsite 1.0 SQL Injection

Exploit Title: CMSsite 1.0 - SQL injection Exploit Author : Majid kalantari [email protected] Date: 2019-01-27 Vendor Homepage : https://github.com/VictorAlagwu/CMSsite Software link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Windows 10 CVE: N/A...

7.4AI score
Exploits0
0day.today
0day.todayadded 2019/01/28 12:0 a.m.27 views

CMSsite 1.0 - search SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: CMSsite 1.0 - 'search' SQL injection Exploit Author : Majid kalantari email protected Vendor Homepage : https://github.com/VictorAlagwu/CMSsite Software link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1...

0.1AI score
Exploits0
Rows per page
Query Builder