CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CVE•added 2026/02/06 11:14 p.m.•5 views

CVE-2020-37154

CVE-2020-37154 affects eLection 2.0, with an authenticated SQL injection in the candidate management endpoint. The vulnerability allows manipulation of database queries through the 'id' parameter and can be leveraged with SQLMap; authorship notes suggest potential remote code execution via upload...

7.1CVSS6.6AI score0.00028EPSS

Exploits0References4

ATTACKERKB•added 2026/02/06 11:14 p.m.•1 views

CVE-2020-37154

eLection 2.0 contains an authenticated SQL injection vulnerability in the candidate management endpoint that allows attackers to manipulate database queries through the 'id' parameter. Attackers can leverage SQLMap to exploit the vulnerability, potentially gaining remote code execution by uploadi...

7.1CVSS6.6AI score0.00028EPSS

Exploits0References4Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-30161

Malware in sbrugna...

7.2CVSS7AI score0.00303EPSS

Exploits2References2

0day.today•added 2020/02/24 12:0 a.m.•104 views

eLection 2.0 - (id) SQL Injection Vulnerability

Exploit for php platform in category web applications Title: eLection 2.0 - 'id' SQL Injection Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/projects/election-by-tripath/ Software Link: https://sourceforge.net/projects/election-by-tripath/files/Version 2.0 Tested on Ubuntu...

0.2AI score

Exploits0

Packet Storm•added 2020/02/24 12:0 a.m.•155 views

eLection 2.0 SQL Injection

Title: eLection 2.0 - 'id' SQL Injection Date: 2020-02-21 Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/projects/election-by-tripath/ Software Link: https://sourceforge.net/projects/election-by-tripath/files/Version 2.0 Tested on Ubuntu 19/Kali Rolling The eLection Web...

7.4AI score

Exploits0

Exploit DB•added 2020/02/24 12:0 a.m.•118 views

eLection 2.0 - 'id' SQL Injection

7.4AI score

Exploits0

NVD•added 2020/02/22 10:15 p.m.•9 views

CVE-2020-9340

fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/opkandidat.php id parameter...

7.2CVSS7.5AI score0.00303EPSS

Exploits2References1

NVD•added 2020/02/22 10:15 p.m.•9 views

CVE-2020-9336

fauzantrif eLection 2.0 has XSS via the Admin Dashboard - Settings - Election - "message if election is closed" field...

5.4CVSS5.3AI score0.00281EPSS

Exploits1References1

Prion•added 2020/02/22 10:15 p.m.•10 views

Sql injection

fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/opkandidat.php id parameter...

6.5CVSS7.5AI score0.00303EPSS

Exploits2References1Affected Software1

Cvelist•added 2020/02/22 9:50 p.m.•15 views

CVE-2020-9340

fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/opkandidat.php id parameter...

7.5AI score0.00303EPSS

Exploits2References1

Cvelist•added 2020/02/22 9:38 p.m.•10 views

CVE-2020-9336

fauzantrif eLection 2.0 has XSS via the Admin Dashboard - Settings - Election - "message if election is closed" field...

5.3AI score0.00281EPSS

Exploits1References1

CVE•added 2020/02/22 9:38 p.m.•92 views

CVE-2020-9336

CVE-2020-9336 affects fauzantrif eLection 2.0, a web-based election system. The vulnerability is a cross-site scripting (XSS) flaw exploitable via the Admin Dashboard → Settings → Election → 'message if election is closed' field. Root cause: input in that field is not properly sanitized, enabling...

5.4CVSS5.2AI score0.00281EPSS

Exploits1References1Affected Software1

ATTACKERKB•added 2020/02/22 12:0 a.m.•23 views

CVE-2020-9340

fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/opkandidat.php id parameter. Recent assessments: J3rryBl4nks at March 09, 2020 9:27pm UTC reported: This is an authenticated SQL Injection that should lead to a reverse shell. It’s very easy to identify, and to exploit. The value is low...

7.2CVSS3.4AI score0.00303EPSS

Exploits2References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by