12 matches found
CVE-2026-30655
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
EUVD-2026-14891
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
CVE-2026-30655
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
e-SIC Livre 安全漏洞
e-SIC Livre is an open-source citizen information request system developed by esiclivre. Versions of e-SIC Livre prior to 0.2.2 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of the cpfcnpj parameter in the Solicitante::resetaSenha function, which could...
PT-2026-27439
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
CVE-2026-30655
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
CVE-2026-30655
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
CVE-2026-30655
SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...
Sql injection
SQL Injection exists in the E-Sic 1.0 password reset parameter aka the cpfcnpj parameter to the /reset URI...
CVE-2017-15378
SQL Injection exists in the E-Sic 1.0 password reset parameter aka the cpfcnpj parameter to the /reset URI...
CVE-2017-15378
SQL Injection exists in the E-Sic 1.0 password reset parameter aka the cpfcnpj parameter to the /reset URI...
E-Sic Software livre CMS - cpfcnpj Parameter SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: E-Sic Software livre CMS - Sql Injection Exploit Author: Elber Tavares fireshellsecurity.team/ Vendor Homepage: https://softwarepublico.gov.br/ Version: 1.0 Tested on: kali linux, windows 7, 8.1, 10 - Firefox Download...