Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/12/09 12:29 p.m.7 views

CVE-2025-14230

A vulnerability was detected in code-projects Daily Time Recording System 4.5.0. The impacted element is an unknown function of the file /admin/addpayroll.php. Performing manipulation of the argument detailId results in sql injection. The attack can be initiated remotely. The exploit is now publi...

8.8CVSS7AI score0.0027EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/08 11:32 a.m.4 views

CVE-2025-14230 code-projects Daily Time Recording System add_payroll.php sql injection

A vulnerability was detected in code-projects Daily Time Recording System 4.5.0. The impacted element is an unknown function of the file /admin/addpayroll.php. Performing manipulation of the argument detailId results in sql injection. The attack can be initiated remotely. The exploit is now publi...

6.5CVSS6.8AI score0.0027EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/16 7:56 a.m.3 views

CVE-2025-41019 SQL injection vulnerability in Sergestec's Exito

SQL injection in Sergestec's SISTICK v7.2. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'id' parameter in '/index.php?view=ticketdetail'...

9.3CVSS7.5AI score0.00348EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/16 7:56 a.m.10 views

CVE-2025-41019 SQL injection vulnerability in Sergestec's Exito

SQL injection in Sergestec's SISTICK v7.2. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'id' parameter in '/index.php?view=ticketdetail'...

9.3CVSS0.00348EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/18 12:0 a.m.3 views

Modern Bag product-detail.php file SQL Injection Vulnerability

Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter ID in the file /product-detail.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal S...

9.8CVSS8.2AI score0.00454EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/12 12:0 a.m.5 views

Code-Projects Modern Bag 注入漏洞

Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter ID in the file /product-detail.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal S...

9.8CVSS8.1AI score0.00454EPSS
Exploits1References6
OSV
OSV
added 2021/02/17 3:15 p.m.2 views

CVE-2020-36003

The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases...

7.5CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2020/06/24 1:51 a.m.10 views

OSV-2020-190 Use-of-uninitialized-value in file_vprintf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20729 Crash type: Use-of-uninitialized-value Crash state: filevprintf fileprintf filebuffer...

7.2AI score
Exploits0References1
OSV
OSV
added 2017/12/13 9:29 a.m.4 views

CVE-2017-17635

MLM Forex Market Plan Script 2.0.4 has SQL Injection via the newsdetail.php newid parameter or the eventdetail.php eventid parameter...

9.8CVSS5.8AI score0.02204EPSS
Exploits1References2
Rows per page
Query Builder