Lucene search
+L

59 matches found

Vulnrichment
Vulnrichment
added 2025/10/18 6:42 a.m.4 views

CVE-2025-10187 GSpeech TTS – WordPress Text To Speech Plugin <= 3.17.13 - Authenticated (Admin+) SQL injection

The GSpeech TTS – WordPress Text To Speech Plugin plugin for WordPress is vulnerable to SQL Injection via the 'field' parameter in all versions up to, and including, 3.17.13 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

4.9CVSS6.1AI score0.00383EPSS
Exploits0References3
NVD
NVD
added 2025/10/17 8:15 p.m.9 views

CVE-2025-11912

A flaw has been found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected is the function Query of the file /DeviceState.do?Action=Query. This manipulation of the argument orderField causes sql injection. The attack can be initiated remotely. The exploit has been published and may be...

8.8CVSS0.00461EPSS
Exploits1References4
NVD
NVD
added 2025/10/17 8:15 p.m.8 views

CVE-2025-11911

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts the function Query of the file /DeviceFault.do?Action=Query. The manipulation of the argument sortField results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

8.8CVSS0.00461EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-4855

Malware in sbrugna...

6.8CVSS6.4AI score0.01455EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2013-0325

Malware in sbrugna...

3.5CVSS6.3AI score0.00686EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-3199

Malware in sbrugna...

9.8CVSS9.5AI score0.0151EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/06 8:16 p.m.5 views

EUVD-2025-32540

XWiki Platform is vulnerable to HQL injection via wiki and space search REST API...

9.3CVSS6.7AI score0.02207EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-32047

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00469EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/02 12:17 a.m.7 views

CVE-2025-56588

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS8.5AI score0.00469EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/10/01 9:31 p.m.10 views

Dolibarr vulnerable to RCE via the computed field parameter

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS8.5AI score0.00469EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/10/01 9:31 p.m.4 views

GHSA-27HJ-48R9-X2VX Dolibarr vulnerable to RCE via the computed field parameter

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS8.5AI score0.00469EPSS
Exploits0References5
NVD
NVD
added 2025/10/01 8:18 p.m.9 views

CVE-2025-56588

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS0.00469EPSS
Exploits0References1
OSV
OSV
added 2025/10/01 8:18 p.m.10 views

UBUNTU-CVE-2025-56588

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS6.4AI score0.00469EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/01 12:0 a.m.3 views

CVE-2025-56588

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.1AI score0.00469EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.4 views

Dolibarr ERP & CRM 安全漏洞

Dolibarr ERP & CRM is an enterprise management software from Dolibarr Open Source. A security vulnerability exists in Dolibarr ERP & CRM version 21.0.1 due to a remote code execution vulnerability in the computed field parameter of the User module configuration...

8.8CVSS7.6AI score0.00469EPSS
Exploits0References2
OSV
OSV
added 2025/10/01 12:0 a.m.4 views

CVE-2025-56588

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS8.5AI score0.00469EPSS
Exploits0References3
OSV
OSV
added 2025/04/17 5:15 p.m.4 views

CVE-2025-29181

FOXCMS = V1.25 is vulnerable to SQL Injection via $param'title' in /admin/util/Field.php...

7.2CVSS5.8AI score0.00346EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.4 views

FoxCMS 安全漏洞

FoxCMS is a free commercial open source content management system from China Qianxu FoxCMS. FoxCMS 1.25 and previous versions of SQL injection vulnerability, the vulnerability stems from /admin/util/Field.php $param title parameter lack of validation of external input SQL statements. An attacker...

7.2CVSS7.9AI score0.00346EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.5 views

WordPress plugin Categorized Gallery Plugin SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

6.5CVSS9.3AI score0.00443EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/01 12:0 a.m.11 views

PT-2024-31902 · Unknown · Scriptcase

Name of the Vulnerable Software and Affected Versions: Scriptcase versions 9.10.023 and earlier Description: The issue is related to Cross Site Scripting XSS in the nm cor.php file, specifically via the form and field parameters. This allows for potential malicious script injection...

5.4CVSS6.1AI score0.00298EPSS
Exploits1References6
Rows per page
Query Builder