Lucene search
K

139 matches found

CNVD
CNVD
added 2025/05/30 12:0 a.m.1 views

News Portal Project /edit-subadmin.php File SQL Injection Vulnerability

News Portal Project is a news portal project. News Portal Project suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter emailid in the file /admin/edit-subadmin.php. An attacker can exploit this vulnerability t...

9.8CVSS8.3AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:51 p.m.6 views

CVE-2022-30827

Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\packageedit.php...

7.2CVSS8.1AI score0.00958EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.5 views

PT-2025-3917 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical issue has been found in the software, affecting some unknown functionality of the file /fladmin/cat edit.php. The manipulation of the id argument leads to SQL injection. This issue...

9.8CVSS7.2AI score0.00495EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.4 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in native-php-cms version 1.0, which stems from a parameter id in the file /fladmin/catedit.php that can lead to SQL injection...

9.8CVSS6.8AI score0.00495EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.5 views

PT-2024-34430 · Unknown · Kashipara E-Learning Management System Project

Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System Project version 1.0 Description: A SQL Injection issue was found in the /admin/edit class.php file via the class name parameter. This allows for potential exploitation. Recommendations: For kashipara...

7.2CVSS8AI score0.0058EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/11/05 12:0 a.m.3 views

PT-2024-16582 · Unknown · Romadebrian Web-Sekolah

Name of the Vulnerable Software and Affected Versions: romadebrian WEB-Sekolah version 1.0 Description: A vulnerability has been found in the file /Admin/akun edit.php of the component Backend. The manipulation of the argument kode leads to cross site scripting. It is possible to launch the attac...

5.1CVSS4AI score0.00354EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.5 views

PT-2024-39539 · Unknown · Bg5Sbk Minicms

Name of the Vulnerable Software and Affected Versions: bg5sbk MiniCMS versions up to 1.11 Description: A vulnerability was found in bg5sbk MiniCMS, affecting some unknown processing of the file post-edit.php, leading to cross-site request forgery. The attack may be initiated remotely. The exploit...

6.9CVSS6.7AI score0.00336EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.7 views

PT-2024-39540 · Unknown · Bg5Sbk Minicms

Name of the Vulnerable Software and Affected Versions: bg5sbk MiniCMS version 1.11 Description: A vulnerability was found in bg5sbk MiniCMS, classified as problematic. It affects an unknown function of the file page-edit.php, leading to cross-site request forgery. The attack can be launched...

6.9CVSS6.7AI score0.00299EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/09/20 12:0 a.m.6 views

PT-2024-32089 · Enms · Enms

Name of the Vulnerable Software and Affected Versions: eNMS versions 4.4.0 through 4.7.1 Description: The issue is related to Directory Traversal via edit file. This allows unauthorized access to sensitive files and directories. Recommendations: For versions 4.4.0 through 4.7.1, consider...

6.5CVSS7AI score0.0082EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/09/20 12:0 a.m.5 views

eNMS 安全漏洞

eNMS is a network automation platform from eNMS Open Source. A security vulnerability exists in eNMS versions prior to 4.4.0 through 4.7.1, which stems from vulnerability to directory traversal attacks via editfile...

6.5CVSS6.7AI score0.0082EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/08/10 12:0 a.m.10 views

PT-2024-10015 · Gogs · Gogs

Name of the Vulnerable Software and Affected Versions: Gogs versions =0.13.0 Description: The issue is related to a Directory Traversal vulnerability via the editFilePost function in the internal/route/repo/editor.go file. This vulnerability is caused by improper restriction of the directory path...

9.8CVSS8.1AI score0.14949EPSS
Exploits3References30
OSV
OSV
added 2024/04/07 6:15 p.m.4 views

CVE-2024-3428

A vulnerability has been found in SourceCodester Online Courseware 1.0 and classified as problematic. This vulnerability affects unknown code of the file edit.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...

6.1CVSS3.8AI score0.0057EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/04/07 12:0 a.m.5 views

Online Courseware 安全漏洞

DPEC Online Courseware is an online courseware system from DPEC Corporation. A security vulnerability exists in Online Courseware version 1.0, which can be exploited for cross-site scripting attacks due to the id parameter in the edit.php file...

6.1CVSS4.5AI score0.0057EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/04/07 12:0 a.m.8 views

Online Courseware SQL注入漏洞

DPEC Online Courseware is an online courseware system from DPEC Corporation. A SQL injection vulnerability exists in version 1.0 of Online Courseware, which originates from an SQL injection attack on the id parameter of the admin/edit.php file...

9.8CVSS7AI score0.00756EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/04/03 12:0 a.m.6 views

PT-2024-24659 · Unknown · Sourcecodester Internship Portal Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Internship Portal Management System version 1.0 Description: A critical issue has been found in the SourceCodester Internship Portal Management System, affecting the processing of the file admin/edit admin.php. The manipulation...

7.2CVSS7.2AI score0.00706EPSS
Exploits1References8
OSV
OSV
added 2024/02/21 5:15 p.m.3 views

CVE-2024-1702

A vulnerability was found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /edit.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the publi...

9.8CVSS5.7AI score0.00662EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/02/21 12:0 a.m.10 views

PT-2024-18235 · Unknown · Keerti1924 Php-Mysql-User-Login-System

Name of the Vulnerable Software and Affected Versions: keerti1924 PHP-MYSQL-User-Login-System version 1.0 Description: A critical issue was found in the keerti1924 PHP-MYSQL-User-Login-System, affecting some unknown functionality of the file /edit.php. This issue leads to sql injection and can be...

9.8CVSS7.4AI score0.00662EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.7 views

Supplier Management System Security Vulnerability

Supplier Management System is a supplier management system. A security vulnerability exists in Campcodes Supplier Management System v1.0, which originates from a SQL injection vulnerability in the file editretailer.php...

7.2CVSS7.9AI score0.00707EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/01/07 12:0 a.m.6 views

PT-2024-15431 · Unknown · Kashipara Food Management System

Name of the Vulnerable Software and Affected Versions: Kashipara Food Management System versions up to 1.0 Description: A critical vulnerability has been found in the Kashipara Food Management System. This issue affects the file addmaterial edit.php, where the manipulation of the id argument lead...

6.5CVSS8AI score0.00565EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/01/07 12:0 a.m.3 views

PT-2024-15439 · Unknown · Kashipara Food Management System

Name of the Vulnerable Software and Affected Versions: Kashipara Food Management System versions up to 1.0 Description: A critical issue was found in the Kashipara Food Management System. The manipulation of the id argument in an unknown function of the file item list edit.php leads to SQL...

6.5CVSS8AI score0.00565EPSS
Exploits1References7
Rows per page
Query Builder