CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System up to 1.0. This affects an unknown part of the file /admin/changepassword.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to initiate the attack...

7.2CVSS5.1AI score0.00253EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:11 a.m.•3 views

CVE-2023-3150

A vulnerability was found in SourceCodester Online Discussion Forum Site 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file posts\managepost.php. The manipulation of the argument id leads to sql injection. The attack can be launched...

8.8CVSS7.4AI score0.00071EPSS

Exploits1References1

NVD•added 2025/03/02 9:15 p.m.•7 views

CVE-2025-1832

A vulnerability classified as critical was found in zj1983 zz up to 2024-8. Affected by this vulnerability is the function getUserList of the file src/main/java/com/futvan/z/system/zrole/ZroleAction.java. The manipulation of the argument roleid leads to sql injection. The attack can be launched...

8.8CVSS0.0006EPSS

Exploits1References4

Exploit DB•added 2022/02/02 12:0 a.m.•229 views

PHP Restaurants 1.0 - SQLi (Unauthenticated)

Exploit Title: PHP Restaurants 1.0 - SQLi Unauthenticated Google Dork: None Date: 01/29/2022 Exploit Author: Nefrit ID Vendor Homepage: https://github.com/jcwebhole Software Link: https://github.com/jcwebhole/phprestaurants Version: 1.0 Tested on: Kali Linux & Windows 10 SQL injection is a code...

7.4AI score

Exploits0

Exploit DB•added 2022/01/18 12:0 a.m.•311 views

Nyron 1.0 - SQLi (Unauthenticated)

Exploit Title: Nyron 1.0 - SQLi Unauthenticated Google Dork: inurl:"winlib.aspx" Date: 01/18/2021 Exploit Author: Miguel Santareno Vendor Homepage: http://www.wecul.pt/ Software Link: http://www.wecul.pt/solucoes/bibliotecas/ Version: 3. Research: https://miguelsantareno.github.io/edp.pdf...

7.4AI score

Exploits0

Packet Storm•added 2021/05/21 12:0 a.m.•262 views

WordPress WP Statistics 13.0.7 SQL Injection

Exploit Title: WordPress Plugin WP Statistics 13.0.7 - Time-Based Blind SQL Injection Unauthenticated Date: 20/05/2021 Exploit Author: Mansoor R @time4ster CVSS Score: 7.5 High CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Version Affected: 13.0 to 13.0.7 Vendor URL:...

0.1AI score

Exploits0

seebug.org•added 2017/12/06 12:0 a.m.•36 views

ucms 1.4.3 SQL注入

...

1.3AI score

Exploits0

seebug.org•added 2017/07/19 12:0 a.m.•16 views

wstmall the latest version V1. 9. 4 a SQL injection

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2017/03/11 12:0 a.m.•8 views

ohocms getjwj.php sql injection vulnerability

No description provided by source...

7.1AI score

Exploits0

Packet Storm•added 2017/01/19 12:0 a.m.•37 views

Clone Of Oddee Script 1.1.3 SQL Injection

Vulnerability: SQL Injection Date: 15.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: Questions and Answers Script V1.1.3 Script Buy Now: http://www.scriptfolder.com/cool-planet-clone-of-oddee/ Author: Ihsan Sencan Author Web: http://ihsan.net Mail : ihsanbeygirihsannoktanet SQ...

Exploits0

seebug.org•added 2016/08/01 12:0 a.m.•34 views

SIRIUS news.php parameters gid a SQL injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/17 12:0 a.m.•21 views

TodayMail mail system webmail/main/letter.inc.php file typeid parameter SQL vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/04 12:0 a.m.•21 views