CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3898 matches found

Packet Storm•added 2022/10/03 12:0 a.m.•262 views

Joomla MarvikShop ShoppingCart 3.4 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

1.2AI score

Exploits0

Packet Storm•added 2022/10/01 12:0 a.m.•213 views

Joomla JS Jobs Pro 1.3.6 SQL Injection

0.6AI score

Exploits0

Packet Storm•added 2022/10/01 12:0 a.m.•243 views

Joomla MyMuse 4.3.0 SQL Injection

0.3AI score

Exploits0

Prion•added 2022/09/30 7:15 p.m.•12 views

Design/Logic Flaw

If folder security is misconfigured for Actian Zen PSQL BEFORE Patch Update 1 for Zen 15 SP1 v15.11.005, Patch Update 4 for Zen 15 v15.01.017, or Patch Update 5 for Zen 14 SP2 v14.21.022, it can allow an attacker with file read/write access to remove specific security files in order to reset the...

6.5CVSS8.9AI score0.00658EPSS

Exploits0References2Affected Software2

Cvelist•added 2022/09/30 6:15 p.m.•18 views

CVE-2022-40756

9.1AI score0.00658EPSS

Exploits0References2

Vulnrichment•added 2022/09/30 6:15 p.m.•9 views

CVE-2022-40756

8.9AI score0.00658EPSS

Exploits0References2

0day.today•added 2022/09/29 12:0 a.m.•241 views

Joomla AdsManager 3.2.0 SQL Injection Vulnerability

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ┌┘ Exploits ┌┘ └───────────────────────────────────────────────────────────────────────────────────────┘┘ : Author : CraCkEr : │ Website : extensions.joomla.org │ │ Vendor : JULOA │ │ Software : AdsManager...

0.7AI score

Exploits0

NVD•added 2022/09/28 2:15 p.m.•14 views

CVE-2022-22524

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services...

9.4CVSS0.00903EPSS

Exploits0References1

Prion•added 2022/09/28 2:15 p.m.•15 views

Sql injection

7.5CVSS9.2AI score0.00903EPSS

Exploits0References1Affected Software2

CVE•added 2022/09/28 1:45 p.m.•49 views

CVE-2022-22524

CVE-2022-22524 affects Carlo Gavazzi UWP3.0 and CPY Car Park Server (v2.8.3). Multiple sources describe a SQL injection that allows an unauthenticated remote attacker to gain full database access, modify users, and stop services. The affected components include UWP3.0 monitoring gateway/controlle...

9.4CVSS9.5AI score0.00903EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/09/28 1:45 p.m.•24 views

CVE-2022-22524 SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access

9.4CVSS9.6AI score0.00903EPSS

Exploits0References1

Vulnrichment•added 2022/09/28 1:45 p.m.•4 views

CVE-2022-22524 SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access

9.4CVSS9.4AI score0.00903EPSS

Exploits0References1

Cvelist•added 2022/09/28 12:0 a.m.•24 views

CVE-2022-28813 SQL-injection in Car Park Server 3.0 allows for full database access.

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device...

7.5CVSS7.9AI score0.00823EPSS

Exploits0References1

Positive Technologies•added 2022/09/27 12:0 a.m.•3 views

PT-2022-15494 · Carlo Gavazzi · Carlo Gavazzi Uwp3.0

Name of the Vulnerable Software and Affected Versions: Carlo Gavazzi UWP3.0 affected versions not specified CPY Car Park Server version 2.8.3 Description: An unauthenticated remote attacker could utilize a SQL-Injection issue to gain full database access, modify users, and stop services...

9.4CVSS9.4AI score0.00903EPSS

Exploits0References4

CNNVD•added 2022/09/27 12:0 a.m.•3 views

Advantech iView SQL注入漏洞

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B+B SmartWorx devices. An SQL injection vulnerability exists in Advantech iView version 5.7.04.6469, which stems from a flaw in its ConfigurationServlet endpoint that can be exploited by an attacker t...

7.5CVSS8.1AI score0.30674EPSS

Exploits1References3

NVD•added 2022/09/16 2:15 a.m.•17 views

CVE-2022-26959

There are two full read/write Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp pag...

10CVSS0.00774EPSS

Exploits1References2

ATTACKERKB•added 2022/09/16 2:15 a.m.•3 views

CVE-2022-26959

10CVSS6AI score0.00774EPSS

Exploits1References3

OSV•added 2022/09/16 2:15 a.m.•4 views

CVE-2022-26959

9.8CVSS5.8AI score0.00774EPSS

Exploits1References2

Prion•added 2022/09/16 2:15 a.m.•14 views

Sql injection

7.5CVSS9.9AI score0.00774EPSS

Exploits1References2Affected Software1

CNNVD•added 2022/09/16 12:0 a.m.•3 views

Northstar Club Management SQL注入漏洞

Northstar Club Management is a web-based solution from Northstar, Inc. that allows organizations to manage all elements of a club, such as memberships, guests, events, and more. A security vulnerability exists in Northstar Club Management version 6.3. An attacker exploiting the vulnerability coul...

10CVSS8.4AI score0.00774EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by