CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

50 matches found

RedhatCVE•added 2026/01/09 10:11 a.m.•3 views

CVE-2019-11102

Insufficient input validation in IntelR DAL software for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...

4.4CVSS6.2AI score0.00141EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:56 a.m.•6 views

CVE-2020-12304

Improper access control in Installer for IntelR DAL SDK before version 2.1 for Windows may allow an authenticated user to potentially enable escalation of privileges via local access...

7.8CVSS7AI score0.00071EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-4615

Malware in sbrugna...

7.8CVSS7.4AI score0.00068EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-2806

Malware in sbrugna...

4.4CVSS6.1AI score0.00141EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-4616

Malware in sbrugna...

7.8CVSS7.5AI score0.00071EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2019-0977

Malware in sbrugna...

6.7CVSS6.8AI score0.0007EPSS

Exploits0References3

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-11077 Malicious code in @zalastax/nolb-dal (npm)

The package @zalastax/nolb-dal was found to contain malicious code...

7.2AI score

Exploits0

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•1 views

Malicious code in @zalastax/nolb-dal (npm)

The package @zalastax/nolb-dal was found to contain malicious code...

7AI score

Exploits0

RedhatCVE•added 2025/05/22 4:9 a.m.•4 views

CVE-2019-0170

Buffer overflow in subsystem in IntelR DAL before version 12.0.35 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS7.3AI score0.0007EPSS

Exploits0References1

Cvelist•added 2024/08/08 2:55 p.m.•19 views

CVE-2024-42357 Shopware vulnerable to blind SQL-injection in DAL aggregations

Shopware is an open commerce platform. Prior to versions 6.6.5.1 and 6.5.8.13, the Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the...

7.3CVSS0.00817EPSS

Exploits0References5

Vulnrichment•added 2024/08/08 2:55 p.m.•21 views

CVE-2024-42357 Shopware vulnerable to blind SQL-injection in DAL aggregations

7.3CVSS7AI score0.00817EPSS

Exploits0References5

OSV•added 2024/08/08 2:53 p.m.•12 views

GHSA-P6W9-R443-R752 Shopware vulnerable to blind SQL-injection in DAL aggregations

Impact The Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the parameters in the “aggregations” object. The ‘name’ field in this...

7.3CVSS8.4AI score0.00817EPSS

Exploits0References7

Cvelist•added 2024/01/16 10:30 p.m.•14 views

CVE-2024-22406 Blind SQL-injection in DAL aggregations in Shopware

Shopware is an open headless commerce platform. The Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the parameters in the “aggregations...

9.3CVSS9.4AI score0.00415EPSS

Exploits0References1

NVD•added 2023/08/31 2:15 p.m.•8 views

CVE-2023-41636

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

9.8CVSS9.8AI score0.00234EPSS

Exploits0References2

ATTACKERKB•added 2023/08/31 2:15 p.m.•1 views

CVE-2023-41636

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

9.8CVSS6.1AI score0.00234EPSS

Exploits0References5

Prion•added 2023/08/31 2:15 p.m.•16 views

Sql injection

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

7.5CVSS9.7AI score0.00234EPSS

Exploits0References2Affected Software1

CVE•added 2023/08/31 12:0 a.m.•103 views

CVE-2023-41636

CVE-2023-41636 describes a SQL injection in the parameters of GruppoSCAI RealGimm v1.1.37p38, specifically the Data Richiesta dal parameter. The vulnerability allows an attacker to access the database and execute arbitrary commands through a crafted SQL query. Affected software: GruppoSCAI RealGi...

9.8CVSS9.7AI score0.00234EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/08/31 12:0 a.m.•11 views

CVE-2023-41636

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

8.4AI score0.00234EPSS

Exploits0References2

Cvelist•added 2023/08/31 12:0 a.m.•10 views

CVE-2023-41636

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

10AI score0.00234EPSS

Exploits0References2

F5 Networks•added 2023/02/21 7:58 p.m.•33 views

K51470205: Intel DAL vulnerability CVE-2019-0170

Security Advisory Description Buffer overflow in subsystem in IntelR DAL before version 12.0.35 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2019-0170 Impact Traffix SDC An attacker with local access to the system can exploit this vulnerability...

6.7CVSS7.3AI score0.0007EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by