Lucene search
+L

87 matches found

vulnrichment
vulnrichment
added 2023/02/09 12:0 a.m.6 views

CVE-2023-24684

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php...

8.5AI score0.00981EPSS
Exploits1References3
cnnvd
cnnvd
added 2023/02/09 12:0 a.m.4 views

ChurchCRM SQL注入漏洞

ChurchCRM is an open source CRM system for churches. A security vulnerability exists in ChurchCRM v4.5.3 and earlier versions that stems from the presence of a SQL injection vulnerability via the EID parameter in GetText.php...

7.2CVSS7.2AI score0.00981EPSS
Exploits1References5
ptsecurity
ptsecurity
added 2022/08/04 12:0 a.m.4 views

PT-2022-17849 · Unknown · Sourcecodester Online Admission System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Admission System affected versions not specified Description: A critical issue affects the component GET Parameter Handler in the SourceCodester Online Admission System. The manipulation of the eid argument leads to SQL...

9.8CVSS9.7AI score0.00719EPSS
Exploits1References4
attackerkb
attackerkb
added 2022/06/15 5:15 p.m.4 views

CVE-2022-32991

Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php...

8.8CVSS5.8AI score0.0102EPSS
Exploits1References2
osv
osv
added 2022/06/15 5:15 p.m.5 views

CVE-2022-32991

Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php...

8.8CVSS5.8AI score0.0102EPSS
Exploits1References1
cnnvd
cnnvd
added 2022/06/15 12:0 a.m.9 views

Web Based Quiz System SQL注入漏洞

Web Based Quiz System is an application used for a simple online based project. Web Based Quiz System v1.0 is vulnerable to SQL injection, which stems from the lack of validation of external input SQL statements in the eid parameter of welcome.php. An attacker could use this vulnerability to...

8.8CVSS6AI score0.0102EPSS
Exploits1References2
attackerkb
attackerkb
added 2022/01/21 4:15 p.m.6 views

CVE-2021-46307

An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php...

10CVSS8.1AI score0.01556EPSS
Exploits1References2
nvd
nvd
added 2022/01/21 4:15 p.m.14 views

CVE-2021-46307

An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php...

10CVSS0.01556EPSS
Exploits1References1
cvelist
cvelist
added 2022/01/21 3:59 p.m.18 views

CVE-2021-46307

An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php...

10AI score0.01556EPSS
Exploits1References1
cnnvd
cnnvd
added 2022/01/21 12:0 a.m.6 views

SourceCodester Online Examination System SQL注入漏洞

SourceCodester Projectworlds Online Examination System is an online examination system from SourceCodester, Inc. v1.0 contains a SQL injection vulnerability that stems from the failure of the eid parameter in the product's account.php page to properly filter special characters in user input data...

10CVSS6AI score0.01556EPSS
Exploits1References2
prion
prion
added 2021/11/08 9:15 p.m.14 views

Cross site scripting

Multiple Cross Site Scripting XSS vulnerabilities exist in SourceCodester Tailor Management 1.0 via the 1 eid parameter in a partedit.php and b customeredit.php, the 2 id parameter in a editmeasurement.php and b addpayment.php, and the 3 error parameter in index.php...

4.3CVSS6.2AI score0.00641EPSS
Exploits1References1Affected Software1
attackerkb
attackerkb
added 2021/11/08 9:15 p.m.3 views

CVE-2021-40260

Multiple Cross Site Scripting XSS vulnerabilities exist in SourceCodester Tailor Management 1.0 via the 1 eid parameter in a partedit.php and b customeredit.php, the 2 id parameter in a editmeasurement.php and b addpayment.php, and the 3 error parameter in index.php...

6.1CVSS5.8AI score0.00641EPSS
Exploits1References2
packetstorm
packetstorm
added 2020/05/18 12:0 a.m.178 views

Online Examination System 1.0 SQL Injection

Exploit Title: Online Examination System 1.0 - 'eid' SQL Injection Google Dork: N/A Date: 2020-05-16 Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/14210/online-examination-system-project-using-phpmysql.html Software Link:...

7.4AI score
Exploits0
osv
osv
added 2019/02/04 7:29 p.m.2 views

DEBIAN-CVE-2019-7332

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'eid' aka Event ID parameter value in the view download download.php because proper filtration is omitted...

6.1CVSS8.2AI score0.009EPSS
Exploits1References1
osv
osv
added 2019/02/04 7:29 p.m.4 views

UBUNTU-CVE-2019-7332

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'eid' aka Event ID parameter value in the view download download.php because proper filtration is omitted...

6.1CVSS7AI score0.009EPSS
Exploits1References4
alpinelinux
alpinelinux
added 2019/02/04 7:0 p.m.47 views

CVE-2019-7332

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'eid' aka Event ID parameter value in the view download download.php because proper filtration is omitted...

6.1CVSS6.1AI score0.009EPSS
Exploits1
ptsecurity
ptsecurity
added 2019/02/04 12:0 a.m.3 views

PT-2019-18537 · Zoneminder +3 · Zoneminder +3

Name of the Vulnerable Software and Affected Versions: ZoneMinder versions prior to 1.32.4 Description: A Reflected Cross Site Scripting issue exists, allowing an attacker to execute HTML or JavaScript code via a vulnerable eid parameter value in the "download.php" API endpoint, due to omitted...

9.8CVSS6.5AI score0.67128EPSS
Exploits46References111
osv
osv
added 2018/09/28 12:29 a.m.5 views

CVE-2018-17394

SQL Injection exists in the Timetable Schedule 3.6.8 component for Joomla! via the eid parameter...

9.8CVSS5.8AI score0.03213EPSS
Exploits5References2
prion
prion
added 2018/09/28 12:29 a.m.19 views

Sql injection

SQL Injection exists in the Timetable Schedule 3.6.8 component for Joomla! via the eid parameter...

7.5CVSS9.8AI score0.03213EPSS
Exploits5References2Affected Software1
cvelist
cvelist
added 2010/03/02 8:0 p.m.18 views

CVE-2010-0796

SQL injection vulnerability in the JE Quiz comjequizmanagement component 1.b01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the eid parameter in a question action to index.php...

8.3AI score0.01161EPSS
Exploits1References6
Rows per page
Query Builder