CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Stored Cross Site Scripting XSS vulnerability in EGavilan Media CRUD Operation with PHP, MySQL, Bootstrap, and Dompdf via First Name or Last Name parameter in the 'Add New Record Feature'...

5.4CVSS5.9AI score0.00181EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:26 p.m.•6 views

CVE-2020-35396

EGavilan Barcodes generator 1.0 is affected by: Cross Site Scripting XSS via the index.php. An Attacker is able to inject the XSS payload in the web application each time a user visits the website...

6.1CVSS5.4AI score0.00509EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:26 p.m.•6 views

CVE-2020-35395

XSS in the Add Expense Component of EGavilan Media Expense Management System 1.0 allows an attacker to permanently store malicious JavaScript code via the 'description' field...

6.1CVSS6.2AI score0.00234EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:28 p.m.•3 views

CVE-2020-29474

EGavilan Media EGM Address Book 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrary code execution...

9.8CVSS8.4AI score0.0257EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:28 p.m.•5 views

CVE-2020-29472

EGavilan Media Under Construction page with cPanel 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrary code execution...

9.8CVSS8.4AI score0.0257EPSS

Exploits1

RedhatCVE•added 2025/02/08 6:52 a.m.•2 views

CVE-2020-36085

Stored Cross Site ScriptingXSS vulnerability in Egavilan Media Resumes Management and Job Application Website 1.0 allows remote attackers to inject arbitrary code via First and Last Name in Apply For This Job Form...

6.3CVSS7.2AI score0.00235EPSS

Exploits0

NVD•added 2025/02/06 10:15 p.m.•7 views

CVE-2020-36085

6.3CVSS0.00235EPSS

Exploits0References1

Positive Technologies•added 2025/02/06 12:0 a.m.•1 views

PT-2025-5879 · Unknown · Egavilan Media Resumes Management/Job Application Website

Name of the Vulnerable Software and Affected Versions: Egavilan Media Resumes Management and Job Application Website version 1.0 Description: The issue allows remote attackers to inject arbitrary code via the First and Last Name fields in the Apply For This Job Form. This is a Stored Cross Site...

6.3CVSS7AI score0.00235EPSS

Exploits0References4

Vulnrichment•added 2025/02/06 12:0 a.m.•4 views

CVE-2020-36085

6.5AI score0.00235EPSS

Exploits0References1

CVE•added 2025/02/06 12:0 a.m.•47 views

CVE-2020-36085

The CVE-2020-36085 entry concerns Egavilan Media’s Resumes Management and Job Application Website (Version 1.0). It describes a Stored Cross Site Scripting (XSS) vulnerability in the Apply For This Job Form, where an attacker can inject arbitrary code via the First Name and Last Name fields. The ...

6.3CVSS7.5AI score0.00235EPSS

Exploits0References1

Cvelist•added 2025/02/06 12:0 a.m.•8 views

CVE-2020-36085

0.00235EPSS

Exploits0References1

CNVD•added 2022/09/29 12:0 a.m.•24 views

Egavilan Media Resumes Management and Job Application Website SQL Injection Vulnerability

Resumes Management and Job Application Website is a simple application that can be used for small business or student projects. version 1.0 of Egavilan Media Resumes Management and Job Application Website is vulnerable to SQL injection vulnerability, which can be exploited by attackers to obtain...

9.8CVSS4.8AI score0.00599EPSS

Exploits2References1

NVD•added 2022/09/27 11:15 p.m.•7 views

CVE-2021-41433

SQL Injection vulnerability exists in version 1.0 of the Resumes Management and Job Application Website application login form by EGavilan Media that allows authentication bypass through login.php...

9.8CVSS0.00599EPSS

Exploits2References2

CVE•added 2022/09/27 7:10 p.m.•78 views

CVE-2021-41433

CVE-2021-41433 is a SQL injection vulnerability in EGavilan Media’s Resumes Management and Job Application Website, version 1.0. The flaw resides in the login.php form and enables authentication bypass, with high-severity impact on confidentiality, integrity, and availability. Public data ties th...

9.8CVSS10AI score0.00599EPSS

Exploits2References2Affected Software1

Cvelist•added 2022/09/27 7:10 p.m.•10 views

CVE-2021-41433

SQL Injection vulnerability exists in version 1.0 of the Resumes Management and Job Application Website application login form by EGavilan Media that allows authentication bypass through login.php...

10AI score0.00599EPSS

Exploits2References2

CNVD•added 2022/06/09 12:0 a.m.•17 views

EGavilan Media Expense-Management-System SQL Injection Vulnerability

EGavilan Media Expense-Management-System is a simple expense management system from EGavilan Media, Inc. An SQL injection vulnerability exists in EGavilan Media Expense-Management-System version 1.0, which stems from vulnerability to SQL injection via / expenseaction.php for SQL injection attacks...

9.8CVSS5.5AI score0.00478EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by