Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

40 matches found

NVD
NVDadded 2026/01/02 3:15 a.m.2 views

CVE-2025-15423

A vulnerability has been found in EmpireSoft EmpireCMS up to 8.0. Impacted is the function CheckSaveTranFiletype of the file e/class/connect.php. Such manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The...

8.8CVSS0.00035EPSS
Exploits1References5
CVE
CVEadded 2026/01/02 2:2 a.m.5 views

CVE-2025-15423

Summary: CVE-2025-15423 affects EmpireSoft EmpireCMS up to version 8.0. The vulnerability is in the CheckSaveTranFiletype function of e/class/connect.php, whose manipulation enables unrestricted (arbitrary) file uploads. Exploitation can be conducted remotely and has been publicly disclosed. Mult...

8.8CVSS6.4AI score0.00035EPSS
Exploits1References5Affected Software1
CNNVD
CNNVDadded 2026/01/02 12:0 a.m.2 views

EmpireSoft EmpireCMS 安全漏洞

EmpireSoft EmpireCMS Empire Content Management System is an open source content management system CMS from EmpireSoft, Inc. A security vulnerability exists in EmpireSoft EmpireCMS 8.0 and earlier versions, which stems from an incorrect operation of the function egetip in the file...

7.5CVSS5.5AI score0.0015EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2006-5072

Malware in sbrugna...

7.5CVSS6.4AI score0.0859EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-28707

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00307EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:48 p.m.4 views

CVE-2021-41695

An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php...

9.8CVSS8.2AI score0.00307EPSS
Exploits1
CNVD
CNVDadded 2021/12/12 12:0 a.m.18 views

Belloo SQL Injection Vulnerability

Belloo, a "high quality" dating software from Belloo, is vulnerable to SQL injection, which stems from a lack of validation of external input SQL statements in the ip parameter of connect.php, and can be exploited to execute illegal SQL commands to steal sensitive data from the database. sensitiv...

9.8CVSS2.8AI score0.00307EPSS
Exploits1References1
NVD
NVDadded 2021/12/09 4:15 p.m.11 views

CVE-2021-41695

An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php...

9.8CVSS0.00307EPSS
Exploits1References1
Prion
Prionadded 2021/12/09 4:15 p.m.9 views

Sql injection

An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php...

7.5CVSS9.8AI score0.00307EPSS
Exploits1References1Affected Software1
CNNVD
CNNVDadded 2021/12/09 12:0 a.m.1 views

Belloo SQL注入漏洞

Belloo, a "high quality" dating software from Belloo, is vulnerable to SQL injection, which stems from a lack of validation of external input SQL statements in the ip parameter of connect.php, and can be exploited to execute illegal SQL commands to steal sensitive data from the database. sensitiv...

9.8CVSS5.9AI score0.00307EPSS
Exploits1References2
CNVD
CNVDadded 2019/03/08 12:0 a.m.1 views

PHPMyWind data/api/oauth/connect.php reflective cross-site scripting vulnerability

PHPMyWind is a PHP + MySQL based development , W3C standard building engine . A reflective cross-site scripting vulnerability exists in PHPMyWind data/api/oauth/connect.php. An attacker can exploit the vulnerability to obtain sensitive information such as user cookies...

6.1CVSS6AI score0.00328EPSS
Exploits1References1
NVD
NVDadded 2019/03/07 11:29 p.m.8 views

CVE-2019-7661

An issue was discovered in PHPMyWind 5.5. The method parameter of the data/api/oauth/connect.php page has a reflected Cross-site Scripting XSS vulnerability...

6.1CVSS6AI score0.00328EPSS
Exploits1References1
exploitpack
exploitpackadded 2018/08/23 12:0 a.m.25 views

Twitter-Clone 1 - code SQL Injection

Twitter-Clone 1 - code SQL Injection Exploit Title: Twitter-Clone 1 - 'code' SQL Injection Date: 2018-08-22 Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 vulnerable files : mailactivation.php , stalkers.php , search.php...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2018/08/23 12:0 a.m.59 views

Twitter-Clone 1 - 'code' SQL Injection

Exploit Title: Twitter-Clone 1 - 'code' SQL Injection Date: 2018-08-22 Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 vulnerable files : mailactivation.php , stalkers.php , search.php vulnerable parameters : name , code , id...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2018/08/23 12:0 a.m.22 views

Twitter-Clone 1 SQL Injection

Exploit Title: Twitter-Clone 1 - 'code' SQL Injection Date: 2018-08-22 Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 vulnerable files : mailactivation.php , stalkers.php , search.php vulnerable parameters : name , code , id...

0.2AI score
Exploits0
0day.today
0day.todayadded 2018/08/22 12:0 a.m.16 views

Twitter-Clone 1 - userid SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Twitter-Clone 1 - 'userid' SQL Injection Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 POC : SQLi vulnerable files : follow.php , index.php vulnerable...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2018/08/21 12:0 a.m.21 views

Twitter-Clone 1 - 'userid' SQL Injection

Exploit Title: Twitter-Clone 1 - 'userid' SQL Injection Date: 2018-08-21 Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 POC : SQLi vulnerable files : follow.php , index.php vulnerable parameters : userid , username 1...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2018/08/21 12:0 a.m.21 views

Twitter-Clone 1 - userid SQL Injection

Twitter-Clone 1 - userid SQL Injection Exploit Title: Twitter-Clone 1 - 'userid' SQL Injection Date: 2018-08-21 Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 POC : SQLi vulnerable files : follow.php , index.php vulnerable...

8.7AI score
Exploits0
NVD
NVDadded 2018/02/12 3:29 a.m.10 views

CVE-2018-6880

EmpireCMS 6.6 through 7.2 allows remote attackers to discover the full path via an array value for a parameter to class/connect.php...

5.3CVSS5.4AI score0.00333EPSS
Exploits1References2
Prion
Prionadded 2018/02/12 3:29 a.m.15 views

Code injection

EmpireCMS 6.6 through 7.2 allows remote attackers to discover the full path via an array value for a parameter to class/connect.php...

5CVSS5.4AI score0.00333EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder