Lucene search
K

189 matches found

Prion
Prion
added 2021/10/13 6:15 p.m.14 views

Cross site scripting

Cross Site Scripting XSS.vulnerability exists in Online DJ Booking Management System 1.0 in view-booking-detail.php...

4.3CVSS6.1AI score0.00793EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/10/13 5:42 p.m.16 views

CVE-2021-42223

Cross Site Scripting XSS.vulnerability exists in Online DJ Booking Management System 1.0 in view-booking-detail.php...

6.3AI score0.00793EPSS
Exploits1References1
CVE
CVE
added 2021/10/13 5:42 p.m.42 views

CVE-2021-42223

CVE-2021-42223 affects Online DJ Booking Management System 1.0. The vulnerability is a Cross-Site Scripting (XSS) in view-booking-detail.php. Root cause: unsanitized input leading to script execution. CVSS scores reported: CVSS v2.0 base score 4.3 (MEDIUM) and CVSS v3.1 base score 6.1 (MEDIUM). E...

6.1CVSS6.1AI score0.00793EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/07/30 2:15 p.m.41 views

Sql injection

SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the 1 listid parameter in detail.php and the 2 groupprice or groupid parameters in searchresult.php...

7.5CVSS9.8AI score0.01576EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2021/07/29 3:36 p.m.33 views

CVE-2020-21809

SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the 1 listid parameter in detail.php and the 2 groupprice or groupid parameters in searchresult.php...

9.9AI score0.01576EPSS
Exploits1References4
CVE
CVE
added 2021/07/29 3:36 p.m.75 views

CVE-2020-21809

Summary: CVE-2020-21809 is a SQL Injection vulnerability in the NukeViet CMS module Shops affecting versions 4.0.29 and 4.3, exploitable via improper handling of input parameters (listid in detail.php; group_price or groupid in search_result.php). The vulnerability is documented with high/critica...

9.8CVSS9.8AI score0.01576EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2021/07/01 3:15 p.m.14 views

Sql injection

Multiple SQL Injection vulnerabilities in Teachers Record Management System 1.0 allow remote authenticated users to execute arbitrary SQL commands via the 'editid' GET parameter in edit-subjects-detail.php, edit-teacher-detail.php, or the 'searchdata' POST parameter in search.php...

6.5CVSS9.1AI score0.02351EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2021/07/01 2:38 p.m.16 views

CVE-2021-28423

Multiple SQL Injection vulnerabilities in Teachers Record Management System 1.0 thru 2.1 allow remote authenticated users to execute arbitrary SQL commands via the 'editid' GET parameter in edit-subjects-detail.php, edit-teacher-detail.php, or the 'searchdata' POST parameter in search.php...

9.2AI score0.02351EPSS
Exploits1References4
CNVD
CNVD
added 2021/02/22 12:0 a.m.9 views

Online BookStore SQL Injection Vulnerability

Online BookStore is an online bookstore program. There is a sql injection vulnerability in Online Book Store v1.0. The vulnerability is caused by the id parameter in detail.php not filtering special characters, and an attacker can execute arbitrary SQL statements through this vulnerability...

7.5CVSS8.1AI score0.01494EPSS
Exploits1References1
NVD
NVD
added 2020/09/22 5:15 p.m.12 views

CVE-2020-25487

PHPGURUKUL Zoo Management System Using PHP and MySQL version 1.0 is affected by: SQL Injection via zms/animal-detail.php...

7.8CVSS0.00553EPSS
Exploits1References3
Prion
Prion
added 2020/09/22 5:15 p.m.16 views

Sql injection

PHPGURUKUL Zoo Management System Using PHP and MySQL version 1.0 is affected by: SQL Injection via zms/animal-detail.php...

4.6CVSS8.1AI score0.00553EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/09/22 4:54 p.m.21 views

CVE-2020-25487

PHPGURUKUL Zoo Management System Using PHP and MySQL version 1.0 is affected by: SQL Injection via zms/animal-detail.php...

8.2AI score0.00553EPSS
Exploits1References3
CVE
CVE
added 2020/09/22 4:54 p.m.73 views

CVE-2020-25487

The CVE-2020-25487 affects PHPGURUKUL Zoo Management System Using PHP and MySQL version 1.0 . The vulnerability is an SQL Injection delivered via the endpoint zms/animal-detail.php , enabling manipulation of database queries. The source indicates the issue is tied to this endpoint; there is no av...

7.8CVSS8.1AI score0.00553EPSS
Exploits1References3Affected Software1
Exploit DB
Exploit DB
added 2019/01/14 12:0 a.m.93 views

Find a Place CMS Directory 1.5 - SQL Injection

Exploit Title: Locations CMS 1.5 - SQL Injection Dork: N/A Date: 2019-01-13 Exploit Author: Ihsan Sencan Vendor Homepage: https://themerig.com/ Software Link: https://codecanyon.net/item/locations-multipurpose-cms-directory-theme/21098597 Version: 1.0 Category: Webapps Tested on:...

7.4AI score
Exploits0
NVD
NVD
added 2017/12/18 9:29 a.m.21 views

CVE-2017-17649

Readymade Video Sharing Script 3.2 has HTML Injection via the single-video-detail.php comment parameter...

6.1CVSS6.5AI score0.02506EPSS
Exploits5References2
NVD
NVD
added 2017/12/13 9:29 a.m.21 views

CVE-2017-17636

MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter...

9.8CVSS10AI score0.02204EPSS
Exploits1References2
NVD
NVD
added 2017/12/13 9:29 a.m.16 views

CVE-2017-17602

Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php showid or view-product.php pid parameter...

9.8CVSS10AI score0.0305EPSS
Exploits1References2
Prion
Prion
added 2017/12/13 9:29 a.m.13 views

Sql injection

Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php showid or view-product.php pid parameter...

7.5CVSS9.9AI score0.0305EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2017/12/13 9:29 a.m.13 views

Sql injection

MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter...

7.5CVSS9.9AI score0.02204EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2017/12/13 9:29 a.m.16 views

Sql injection

Readymade Video Sharing Script 3.2 has SQL Injection via the single-video-detail.php reportvideos array parameter...

7.5CVSS9.9AI score0.02204EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder