Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2025/07/24 9:15 p.m.2 views

CVE-2025-8123

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS5.7AI score0.00223EPSS
Exploits1References4
CNNVD
CNNVDadded 2025/07/24 12:0 a.m.2 views

deer-wms-2 SQL注入漏洞

deer-wms-2 is a warehouse management system in China deerwms open source. A SQL injection vulnerability exists in deer-wms-2 3.3 and earlier versions, which originates from the incorrect operation of the parameter ancestors in the file /system/dept/edit that leads to SQL injection...

8.8CVSS6.9AI score0.00223EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/07/21 12:0 a.m.3 views

Live Helper Chat 安全漏洞

Live Helper Chat is an open source plugin that supports online chat by an individual developer Live Helper Chat. Provides chat functionality for web platforms. A security vulnerability exists in Live Helper Chat version v4.60, which stems from insufficient validation of the Alias Nick parameter...

6.5CVSS5.7AI score0.00635EPSS
Exploits4References5
OSV
OSVadded 2024/01/25 11:15 p.m.2 views

CVE-2024-0890

A vulnerability was found in hongmaple octopus 1.0. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to...

9.8CVSS5.8AI score0.00123EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2023/12/01 3:15 p.m.4 views

CVE-2023-49371

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

9.8CVSS5.8AI score0.8445EPSS
Exploits1References3
CNNVD
CNNVDadded 2023/12/01 12:0 a.m.2 views

RuoYi Security Breach

RuoYi is a backend management system for individual developers of RuoYi in China. A security vulnerability exists in RuoYi v4.6 and earlier versions, which originates from a SQL injection vulnerability in /system/dept/edit...

9.8CVSS7.9AI score0.8445EPSS
Exploits1References1
OSV
OSVadded 2022/09/16 3:15 p.m.2 views

CVE-2022-38832

School Activity Updates with SMS Notification v1.0 is vulnerable to SQL Injection via /activity/admin/modules/department/index.php?view=edit&id=...

7.2CVSS5.8AI score0.00274EPSS
Exploits1References1
OSV
OSVadded 2020/03/12 2:15 p.m.1 views

CVE-2020-10501

CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a department, given the id, via a crafted request...

6.5CVSS6.6AI score0.00147EPSS
Exploits1References2
Prion
Prionadded 2020/03/12 2:15 p.m.10 views

Cross site request forgery (csrf)

CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a department, given the id, via a crafted request...

4.3CVSS6.3AI score0.00147EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder