Lucene search
K

49 matches found

NVD
NVD
added 2024/03/18 2:15 p.m.19 views

CVE-2024-2585

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/selectsend2.php, in the 'sdindex' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB...

8.2CVSS8.3AI score0.00523EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/18 1:57 p.m.18 views

CVE-2024-2591 SQL injection vulnerability in AMSS++

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetailgroup.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB...

8.2CVSS8.3AI score0.00534EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/18 1:53 p.m.30 views

CVE-2024-2586 SQL injection vulnerability in AMSS++

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/index.php, in the 'username' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB...

8.2CVSS8.5AI score0.00586EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/18 1:52 p.m.20 views

CVE-2024-2585 SQL injection vulnerability in AMSS++

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/selectsend2.php, in the 'sdindex' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB...

8.2CVSS8.5AI score0.00523EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/18 1:52 p.m.26 views

CVE-2024-2584 SQL injection vulnerability in AMSS++

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/selectsend.php, in the 'sdindex' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB...

8.2CVSS8.5AI score0.00586EPSS
Exploits0References1
NVD
NVD
added 2024/03/12 4:15 p.m.31 views

CVE-2024-1301

SQL injection vulnerability in Badger Meter Monitool affecting versions 4.6.3 and earlier. A remote attacker could send a specially crafted SQL query to the server via the jusername parameter and retrieve the information stored in the database...

9.8CVSS9.6AI score0.02165EPSS
Exploits0References1
NVD
NVD
added 2023/11/30 2:15 p.m.24 views

CVE-2023-6411

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via home.php in the update parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all...

9.8CVSS0.00831EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 2:15 p.m.20 views

Sql injection

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via videos.php in the id parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all th...

5CVSS7.7AI score0.00831EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/11/30 2:15 p.m.19 views

Sql injection

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via update.php in the id parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all th...

5CVSS7.7AI score0.00831EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/30 1:12 p.m.16 views

CVE-2023-6415 SQL injection in Voovi Social Networking Script

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via signin.php in the user parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all...

9.8CVSS7.4AI score0.00831EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/30 1:12 p.m.32 views

CVE-2023-6415 SQL injection in Voovi Social Networking Script

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via signin.php in the user parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all...

9.8CVSS9.7AI score0.00831EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/07 12:0 a.m.29 views

CVE-2023-42283

Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...

9.9AI score0.01257EPSS
Exploits2References1
Prion
Prion
added 2023/08/31 2:15 p.m.25 views

Sql injection

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

7.5CVSS9.7AI score0.00861EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/06/09 10:44 a.m.3 views

SUSE-SU-2023:2478-1 Security update for mariadb

This update for mariadb fixes the following issues: Updated to version 10.5.20: - CVE-2022-47015: Fixed a denial of service that could be triggered by a crafted SQL query bsc1207404...

6.5CVSS6.6AI score0.01486EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/13 12:0 a.m.16 views

EulerOS Virtualization 3.0.6.0 : sqlite (EulerOS-SA-2022-1095)

According to the versions of the sqlite packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo functi...

7.5CVSS6.7AI score0.03898EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/11/17 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2021-2740)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.03898EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/11/17 12:0 a.m.27 views

EulerOS Virtualization 2.9.1 : sqlite (EulerOS-SA-2021-2740)

According to the versions of the sqlite package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo functio...

7.5CVSS6.7AI score0.03898EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/11/03 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2021-2644)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.03898EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/08/25 12:0 a.m.22 views

SQLite 3.36.3 DoS Vulnerability

SQLite is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

7.5CVSS7.4AI score0.03898EPSS
Exploits1References2
OSV
OSV
added 2021/08/24 2:15 p.m.2 views

DEBIAN-CVE-2021-36690

A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges e.g., is intentionally allowe...

7.5CVSS7.6AI score0.03898EPSS
Exploits1References1
Rows per page
Query Builder