CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/12/03 4:26 p.m.•3 views

EUVD-2024-30443

Masa CMS is an open source Enterprise Content Management platform. Masa CMS versions prior to 7.2.8, 7.3.13, and 7.4.6 are vulnerable to remote code execution. The vulnerability exists in the addParam function, which accepts user input via the criteria parameter. This input is subsequently...

9.8CVSS8.1AI score0.01844EPSS

Exploits1References2

Cvelist•added 2025/10/27 10:32 a.m.•6 views

CVE-2025-12262 code-projects Online Event Judging System edit_criteria.php sql injection

A vulnerability was determined in code-projects Online Event Judging System 1.0. This impacts an unknown function of the file /editcriteria.php. Executing manipulation of the argument critid can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed an...

6.5CVSS0.0003EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-9136

Malware in sbrugna...

5.4CVSS5.5AI score0.00206EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-29147

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00528EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 11:58 p.m.•6 views

CVE-2022-24240

ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp...

9.8CVSS8.3AI score0.00528EPSS

Exploits0References1

OSV•added 2022/06/02 2:15 p.m.•1 views

CVE-2022-24240

ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp...

9.8CVSS5.8AI score0.00528EPSS

Exploits0References3

Prion•added 2022/06/02 2:15 p.m.•13 views

Sql injection

ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp...

7.5CVSS9.7AI score0.00528EPSS

Exploits0References3Affected Software1

CNVD•added 2018/01/02 12:0 a.m.•1 views

Biometric Shift Employee Management System Cross-Site Scripting Vulnerability (CNVD-2018-01396)

Biometric Shift Employee Management System is an employee management system. A cross-site scripting vulnerability exists in Biometric Shift Employee Management System. The vulnerability can be exploited to conduct cross-site scripting attacks via the criteria parameter in the...

5.4CVSS6.3AI score0.00206EPSS

Exploits1References1

OSV•added 2017/12/30 4:29 a.m.•0 views

CVE-2017-17994

Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competencycriteria request...

5.4CVSS5.8AI score

Exploits0References1

xssed•added 2008/04/25 12:0 a.m.•8 views

Unfixed XSS vulnerability at www.searchinsa.com

Security researcher PhYtOn, has submitted on 25/04/2008 a cross-site-scripting XSS vulnerability affecting www.searchinsa.com, which at the time of submission ranked 410360 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/06/2008. It is...

Exploits0References1

NVD•added 2005/12/20 11:3 a.m.•9 views

CVE-2005-4395

Cross-site scripting XSS vulnerability in FarCry 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the criteria parameter...

4.3CVSS5.9AI score0.00427EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by