Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Tenable Nessus
Tenable Nessusadded 2026/02/04 12:0 a.m.3 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Django vulnerabilities (USN-8009-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8009-1 advisory. It was discovered that Django exposed timing information when checking passwords. An...

7.5CVSS6.1AI score0.05295EPSS
Exploits2References7
GithubExploit
GithubExploitadded 2026/01/04 10:33 a.m.113 views

sql_injections

No d...

7AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/11/27 6:2 p.m.5 views

CVE-2025-11461

Multiple SQL Injections in Frappe CRM Dashboard Controller due to unsafe concatenation of user-controlled parameters into dynamic SQL statements. This issue affects Frappe CRM: 1.53.1...

8.8CVSS7.5AI score0.00045EPSS
Exploits1References1
OSV
OSVadded 2025/03/22 5:15 a.m.0 views

CVE-2025-0723

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to blind and time-based SQL Injections via the rid and search parameters in all versions up to, and including, 5.9.4.7 due to insufficient escaping on the user supplied parameter and lack of sufficient...

6.5CVSS7.3AI score
Exploits0References3
OSV
OSVadded 2023/01/01 8:15 a.m.1 views

CVE-2022-34324

Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to inject malicious data in SQL queries: Add Currencies, Payment Order, and Transfer History...

8.8CVSS5.8AI score0.00489EPSS
Exploits1References1
OSV
OSVadded 2022/09/19 2:15 p.m.1 views

CVE-2022-2958

The BadgeOS WordPress plugin before 3.7.1.3 does not sanitise and escape parameters before using them in SQL statements via AJAX actions available to any authenticated users, leading to SQL Injections...

8.8CVSS5.8AI score0.00701EPSS
Exploits2References1
OSV
OSVadded 2021/12/06 4:15 a.m.0 views

CVE-2021-43035

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to full acces...

9.8CVSS7.8AI score0.04026EPSS
Exploits1References3
OSV
OSVadded 2021/03/02 7:15 p.m.0 views

CVE-2020-28657

In bPanel 2.0, the administrative ajax endpoints aka ajax/aj.php are accessible without authentication and allow SQL injections, which could lead to platform compromise...

9.8CVSS7.3AI score0.00681EPSS
Exploits0References1
OSV
OSVadded 2010/04/28 11:30 p.m.2 views

DEBIAN-CVE-2010-1595

Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to execute arbitrary SQL commands via the 1 c, 2 val1, or 3 ongletbis parameter...

7.5CVSS8.8AI score0.00465EPSS
Exploits1References1
Rows per page
Query Builder