Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2026/02/03 10:1 p.m.27 views

CVE-2020-37088 School ERP Pro 1.0 - Arbitrary File Read

School ERP Pro 1.0 contains a file disclosure vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the 'document' parameter in download.php. Attackers can access sensitive configuration files by supplying directory traversal paths to retrieve system...

8.7CVSS0.02185EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2026/02/03 12:0 a.m.2 views

PT-2026-5838

Name of the Vulnerable Software and Affected Versions School ERP Pro version 1.0 Description School ERP Pro version 1.0 has a flaw that allows attackers to read arbitrary files without needing to log in. This is possible by manipulating the document parameter within the 'download.php' file. By...

8.7CVSS5.6AI score0.02185EPSS
Exploits1References7
RedhatCVE
RedhatCVEadded 2025/05/22 4:38 p.m.4 views

CVE-2020-36073

SQL injection vulnerability found in Tailor Management System v.1 allows a remote attacker to execute arbitrary code via the detail parameter of the document.php page...

8.8CVSS8.7AI score0.02138EPSS
Exploits1
OSV
OSVadded 2024/11/12 4:15 a.m.0 views

CVE-2024-11102

A vulnerability was found in SourceCodester Hospital Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /vm/doctor/edit-doc.php. The manipulation of the argument name leads to cross site scripting. The attack may be launched...

4.8CVSS3.8AI score
Exploits0References6
OSV
OSVadded 2023/04/06 3:15 p.m.1 views

CVE-2020-36073

SQL injection vulnerability found in Tailor Management System v.1 allows a remote attacker to execute arbitrary code via the detail parameter of the document.php page...

8.8CVSS6.1AI score0.02138EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/04/06 12:0 a.m.1 views

PT-2023-11803 · Unknown · Tailoring Management System

Name of the Vulnerable Software and Affected Versions: Tailor Management System version 1 Description: A SQL injection issue allows a remote attacker to execute arbitrary code via the detail parameter of the "document.php" page. This enables the attacker to potentially access or modify sensitive...

8.8CVSS8.7AI score0.02138EPSS
Exploits1References4
CVE
CVEadded 2022/09/16 1:55 a.m.42 views

CVE-2022-34002

The CVE-2022-34002 issue affects PDS Vista 7 and concerns a Local File Inclusion vulnerability in the /application/documents/display.aspx endpoint, specifically the document parameter. A low-privileged authenticated attacker could leak configuration files and source code of the web application. A...

6.5CVSS6.4AI score0.00366EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2022/09/16 12:0 a.m.2 views

PT-2022-21962 · Pds Vista · Pds Vista

Name of the Vulnerable Software and Affected Versions: PDS Vista version 7 Description: The issue concerns a Local File Inclusion vulnerability in the document parameter of the "/application/documents/display.aspx" API endpoint. This allows a low-privileged authenticated attacker to leak...

6.5CVSS6.4AI score0.00366EPSS
Exploits1References3
Rows per page
Query Builder