Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/03/31 4:0 a.m.26 views

CVE-2026-5180 SourceCodester Simple Doctors Appointment System ajax.php sql injection

A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=login2. This manipulation of the argument email causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS0.00014EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/09/13 1:32 p.m.7 views

CVE-2025-10366 MiczFlor RPi-Jukebox-RFID inc.setWlanIpMail.php cross site scripting

A flaw has been found in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected is an unknown function of the file /htdocs/inc.setWlanIpMail.php. This manipulation of the argument Email address causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be...

5.1CVSS0.00048EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/08/21 7:27 p.m.2 views

CVE-2025-9154

A flaw has been found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /user/page-login.php. This manipulation of the argument email causes sql injection. The attack may be initiated remotely. The exploit has been published and m...

9.8CVSS7.7AI score0.00069EPSS
Exploits1References1
CNVD
CNVDadded 2025/03/12 12:0 a.m.2 views

Unspecified Vulnerability in Online Library Management System (CNVD-2025-21692)

Online Library Management System is an online library management system. A security vulnerability exists in the Online Library Management System, which originates from improper manipulation of the email/phone number parameter in the /change-password.php file, and can be exploited by an attacker t...

3.1CVSS4.5AI score0.00127EPSS
Exploits1References1
OSV
OSVadded 2024/12/30 4:14 p.m.7 views

CVE-2024-52294 khoj has an IDOR in subscription management that allows unauthorized subscription modifications

Khoj is a self-hostable artificial intelligence app. Prior to version 1.29.10, an Insecure Direct Object Reference IDOR vulnerability in the updatesubscription endpoint allows any authenticated user to manipulate other users' Stripe subscriptions by simply modifying the email parameter in the...

4.3CVSS6.6AI score0.00115EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2024/12/30 4:12 p.m.22 views

khoj has an IDOR in subscription management allows unauthorized subscription modifications

Summary An Insecure Direct Object Reference IDOR vulnerability in the updatesubscription endpoint allows any authenticated user to manipulate other users' Stripe subscriptions by simply modifying the email parameter in the request. Details The vulnerability exists in the subscription endpoint at...

4.3CVSS7AI score0.00115EPSS
Exploits0References4Affected Software1
CNNVD
CNNVDadded 2024/06/18 12:0 a.m.1 views

SPA-Cart Security Breach

SPA-Cart is a shopping cart software from SPA-Cart, Inc. A security vulnerability exists in SPA-Cart version 1.9.0.6, which stems from an incorrect manipulation of the parameter email that can lead to observable behavioral differences...

6.3CVSS6.7AI score0.00241EPSS
Exploits1References5
Rows per page
Query Builder