CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows remote attackers to execute arbitrary SQL commands via the ID parameter in an export action...

7.5CVSS8.8AI score0.00243EPSS

Exploits1References1

Vulnrichment•added 2025/05/05 12:0 a.m.•6 views

CVE-2025-26241

A SQL injection vulnerability in the "Search" functionality of "tickets.php" page in osTicket =1.17.5 allows authenticated attackers to execute arbitrary SQL commands via the "keywords" and "topicid" URL parameters combination...

8AI score0.00252EPSS

Exploits1References1

RedhatCVE•added 2025/04/27 12:1 a.m.•7 views

CVE-2025-28076

Multiple SQL injection vulnerabilities in EasyVirt DCScope = 8.6.4 and CO2Scope = 1.3.4 allows remote authenticated attackers to execute arbitrary SQL commands via the 1 timeago, 2 user, 3 filter, 4 target, 5 p1, 6 p2, 7 p3, 8 p4, 9 p5, 10 p6, 11 p7, 12 p8, 13 p9, 14 p10, 15 p11, 16 p12, 17 p13, ...

6.5CVSS8.6AI score0.00126EPSS

Exploits0References1

RedhatCVE•added 2025/02/14 7:46 a.m.•8 views

CVE-2024-34930

A SQL injection vulnerability in /model/allevents1.php in Campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the month parameter...

5.3CVSS8.5AI score0.00051EPSS

Exploits1References1

RedhatCVE•added 2025/02/14 6:15 a.m.•6 views

CVE-2024-34935

A SQL injection vulnerability in /view/conversationhistoryadmin.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the conversationid parameter...

9.8CVSS8.5AI score0.00122EPSS

Exploits1References1

Cvelist•added 2024/05/23 4:34 p.m.•14 views

CVE-2024-34935

8.1AI score0.00122EPSS

Exploits1References1

CNNVD•added 2023/08/03 12:0 a.m.•2 views

Suprema BioStar 2 SQL Injection Vulnerability

Suprema BioStar 2 is a web-based biometric security smart locking platform from Suprema Korea. A security vulnerability exists in Suprema BioStar 2 versions prior to V2.9.1 that originates from allowing an authenticated user to inject arbitrary SQL commands and execute arbitrary SQL commands...

8.8CVSS7.8AI score0.0008EPSS

Exploits0References3

CNVD•added 2021/06/04 12:0 a.m.•4 views

Synology Photo Station SQL Injection Vulnerability (CNVD-2021-39501)

Synology Photo Station is a solution for sharing pictures, videos and blogs over the Internet from Synology Inc. of Taiwan, China. A SQL injection vulnerability exists in Synology Photo Station before 6.8.14-3500, which can be exploited by an attacker to execute arbitrary SQL commands via...

10CVSS8.4AI score0.00818EPSS

Exploits0References1

Prion•added 2018/01/23 6:29 p.m.•15 views

Sql injection

SQL injection vulnerability in RISE Ultimate Project Manager 1.9 allows remote attackers to execute arbitrary SQL commands via the search parameter to index.php/knowledgebase/getarticlesuggestion/...

7.5CVSS9.9AI score0.02724EPSS

Exploits5References2Affected Software1

NVD•added 2017/04/13 2:59 p.m.•9 views

CVE-2016-2555

SQL injection vulnerability in include/lib/mysqlconnect.inc.php in ATutor 2.2.1 allows remote attackers to execute arbitrary SQL commands via the searchFriends function to friends.inc.php...

9.8CVSS9.9AI score0.81579EPSS

Exploits7References5

NVD•added 2014/09/19 10:55 a.m.•17 views

CVE-2014-4424

SQL injection vulnerability in Wiki Server in CoreCollaboration in Apple OS X Server before 2.2.3 and 3.x before 3.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS7.9AI score0.01162EPSS

Exploits0References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by