CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CNNVD•added 2026/04/06 12:0 a.m.•4 views

itsourcecode Construction Management System SQL注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a SQL injection vulnerability. This vulnerability arises from incorrect operations with the empid parameter in...

6.5CVSS6.6AI score0.00192EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-2422

Malware in sbrugna...

7.5CVSS6.4AI score0.00949EPSS

Exploits1References3

CVE•added 2025/08/31 2:32 p.m.•19 views

CVE-2025-9733

CVE-2025-9733 affects code-projects Human Resource Integrated System 1.0. The vulnerable component is the file /login_timeee.php where manipulation of the parameter emp_id enables SQL injection . Root cause is insufficient validation/handling of external input in that parameter, allowing remote e...

9.8CVSS7.4AI score0.00435EPSS

Exploits1References5Affected Software1

NVD•added 2023/08/17 8:15 p.m.•15 views

CVE-2023-31938

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...

7.2CVSS7.4AI score0.0107EPSS

Exploits1References1

Prion•added 2023/08/17 8:15 p.m.•19 views

Sql injection

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...

5.8CVSS7.5AI score0.0107EPSS

Exploits1References1Affected Software1

Prion•added 2023/08/17 8:15 p.m.•16 views

Sql injection

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...

5.8CVSS7.5AI score0.0107EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/08/17 12:0 a.m.•8 views

CVE-2023-31938

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeedetail.php...

8.6AI score0.0107EPSS

Exploits1References1

Vulnrichment•added 2023/08/17 12:0 a.m.•10 views

CVE-2023-31944

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...

8.9AI score0.0107EPSS

Exploits1References1

Cvelist•added 2023/08/17 12:0 a.m.•21 views

CVE-2023-31944

SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the empid parameter at employeeedit.php...

7.6AI score0.0107EPSS

Exploits1References1

Prion•added 2009/07/10 5:30 p.m.•10 views

Sql injection

SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the empid parameter...

7.5CVSS9.1AI score0.00949EPSS

Exploits1References2Affected Software1

NVD•added 2009/07/10 5:30 p.m.•23 views

CVE-2009-2427

SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the empid parameter...

7.5CVSS8.4AI score0.00949EPSS

Exploits1References2