Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-7444

Malware in sbrugna...

4.8CVSS5.1AI score0.00235EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/09/20 10:33 a.m.3 views

CVE-2025-10662

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /adminmembers.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

9.8CVSS7.5AI score0.00209EPSS
Exploits2References1
OSV
OSVadded 2025/09/18 11:15 a.m.1 views

CVE-2025-10662

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /adminmembers.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

9.8CVSS5.7AI score
Exploits0References4
NVD
NVDadded 2025/09/18 11:15 a.m.3 views

CVE-2025-10662

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /adminmembers.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

9.8CVSS0.0006EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/09/18 10:32 a.m.6 views

CVE-2025-10662 SeaCMS admin_members.php sql injection

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /adminmembers.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

5.8CVSS0.0006EPSS
Exploits1References4
CVE
CVEadded 2025/09/18 10:32 a.m.12 views

CVE-2025-10662

CVE-2025-10662 affects SeaCMS up to version 13.3. The vulnerability is a SQL injection in the parameter ID manipulated in the file /admin_members.php?ac=editsave, allowing remote exploitation. The vulnerability is reported to be exploitable because the ID argument is unsafely handled, with public...

9.8CVSS5.3AI score0.0006EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/09/18 10:32 a.m.1 views

CVE-2025-10662 SeaCMS admin_members.php sql injection

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /adminmembers.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

5.8CVSS4.9AI score0.0006EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/04/09 2:19 a.m.5 views

CVE-2025-28411

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method in /tool/gen/editSave...

9.8CVSS7.5AI score0.01669EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/04/09 2:16 a.m.7 views

CVE-2025-28403

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method does not properly validate whether the requesting user has administrative privileges before allowing modifications to system configuration settings...

7.2CVSS7.5AI score0.01282EPSS
Exploits1References1
NVD
NVDadded 2025/04/07 4:15 p.m.6 views

CVE-2025-28411

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method in /tool/gen/editSave...

9.8CVSS0.01669EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/04/07 12:0 a.m.6 views

CVE-2025-28411

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method in /tool/gen/editSave...

7.4AI score0.01669EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/04/07 12:0 a.m.1 views

RuoYi 安全漏洞

RuoYi is a backend management system for individual developers of RuoYi China. A security vulnerability exists in RuoYi v.4.8.0, which originates from the editSave method in tool/gen/editSave and may result in elevated privileges...

9.8CVSS6.8AI score0.01669EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/04/07 12:0 a.m.8 views

CVE-2025-28403

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method does not properly validate whether the requesting user has administrative privileges before allowing modifications to system configuration settings...

7.4AI score0.01282EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/04/07 12:0 a.m.2 views

PT-2025-15244 · Ruoyi · Ruoyi

Name of the Vulnerable Software and Affected Versions: RUoYi version 4.8.0 Description: An issue in RUoYi allows a remote attacker to escalate privileges via the editSave method, which does not properly validate whether the requesting user has administrative privileges before allowing modificatio...

7.2CVSS6.5AI score0.01282EPSS
Exploits1References9
CNNVD
CNNVDadded 2025/04/07 12:0 a.m.2 views

RuoYi 安全漏洞

RuoYi is a backend management system for individual developers of RuoYi in China. A security vulnerability exists in RuoYi version v.4.8.0, which stems from the editSave method not properly verifying the requested user privileges, which may result in modification of the system configuration...

7.2CVSS6.6AI score0.01282EPSS
Exploits1References2
CNVD
CNVDadded 2018/10/30 12:0 a.m.2 views

Waimai Super Cms Cross-Site Scripting Vulnerability (CNVD-2018-26011)

waimai Super Cms is a takeaway ordering system. The system is compatible with IE, Firefox, Chrome, Safari and Opera browsers. A cross-site scripting vulnerability exists in version 20150505 of Waimai Super Cms. A remote attacker can exploit the vulnerability by sending the 'fname' parameter to th...

6.1CVSS5.9AI score0.0024EPSS
Exploits1References1
OSV
OSVadded 2018/10/09 6:29 p.m.0 views

CVE-2018-18082

XSS exists in Waimai Super Cms 20150505 via the fname parameter to the admin.php?m=Food&a=addsave or admin.php?m=Food&a=editsave URI...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2018/10/09 6:29 p.m.10 views

CVE-2018-18082

XSS exists in Waimai Super Cms 20150505 via the fname parameter to the admin.php?m=Food&a=addsave or admin.php?m=Food&a=editsave URI...

6.1CVSS6AI score0.0024EPSS
Exploits1References1
OSV
OSVadded 2018/08/20 1:29 a.m.2 views

CVE-2018-15570

In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter...

4.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2018/08/20 1:29 a.m.9 views

CVE-2018-15570

In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter...

4.8CVSS4.9AI score0.00235EPSS
Exploits0References1
Rows per page
Query Builder