Lucene search
K

913 matches found

Nuclei
Nuclei
β€’added 19 hours agoβ€’46 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=deleterequest. id: CVE-2022-31976 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: critical description: | Online Fire Reporting System v1.0 is vulnerable to...

9.8CVSS7.3AI score0.0716EPSS
Exploits1References3
Nuclei
Nuclei
β€’added 19 hours agoβ€’52 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/requests/takeaction.php?id=. id: CVE-2022-31984 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to SQL...

7.2CVSS7.1AI score0.04863EPSS
Exploits1References3
Nuclei
Nuclei
β€’added 19 hours agoβ€’43 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manageuser&id=. id: CVE-2022-31975 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to SQL...

7.2CVSS7.1AI score0.04863EPSS
Exploits1References3
Nuclei
Nuclei
β€’added 19 hours agoβ€’39 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=. id: CVE-2022-31974 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to SQL Injectio...

7.2CVSS7.1AI score0.04903EPSS
Exploits1References3
Nuclei
Nuclei
β€’added 19 hours agoβ€’50 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=deleteinquiry. id: CVE-2022-31978 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: critical description: | Online Fire Reporting System v1.0 is vulnerable to...

9.8CVSS7.3AI score0.0716EPSS
Exploits1References3
Nuclei
Nuclei
β€’added yesterdayβ€’49 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=deleteteam. id: CVE-2022-31977 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: critical description: | Online Fire Reporting System v1.0 is vulnerable to SQ...

9.8CVSS7.3AI score0.0716EPSS
Exploits1References3
OSSF Malicious Packages
OSSF Malicious Packages
β€’added 2026/05/26 12:3 a.m.β€’13 views

Malicious code in xct-x-ayoub (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d33575d7ebb1fa670ce8a2f633471492b04319daffe0f1e10dd35841cf2709af On import XcTxAyOuB, the package's top-level init.py unconditionally starts a Flask HTTP server bound to 0.0.0.0:5000 configurable via PORT exposing...

5.8AI score
Exploits0References1
Packet Storm News
Packet Storm News
β€’added 2026/04/24 12:0 a.m.β€’9 views

Automation-Exploit: A Multi-Agent LLM Framework for Adaptive Offensive Security with Digital Twin-Based Risk-Mitigated Exploitation

The offensive security landscape is highly fragmented: enterprise platforms avoid memory-corruption vulnerabilities due to Denial of Service DoS risks, Automatic Exploit Generation AEG systems suffer from semantic blindness, and Large Language Model LLM agents face safety alignment filters and...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
β€’added 2026/03/26 3:17 p.m.β€’3 views

CVE-2026-32361

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows DOM-Based XSS.This issue affects Editorial Calendar: from n/a through = 3.9.0...

6.5CVSS5.8AI score0.00161EPSS
Exploits0References1
EUVD
EUVD
β€’added 2026/03/13 9:31 p.m.β€’3 views

EUVD-2026-11851

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows DOM-Based XSS.This issue affects Editorial Calendar: from n/a through = 3.9.0...

5.8AI score0.00161EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
β€’added 2026/03/13 11:42 a.m.β€’1 views

CVE-2026-32361

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows DOM-Based XSS.This issue affects Editorial Calendar: from n/a through = 3.9.0...

5.8AI score0.00161EPSS
Exploits0References2
Positive Technologies
Positive Technologies
β€’added 2026/03/13 12:0 a.m.β€’5 views

PT-2026-25208

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows DOM-Based XSS.This issue affects Editorial Calendar: from n/a through = 3.9.0...

5.8AI score0.00161EPSS
Exploits0References3
Snyk
Snyk
β€’added 2026/03/08 12:39 a.m.β€’2 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the fireWebhook function in the file /internal/service/webhook/webhook.go. An attacker can cause the server to initiate arbitrary requests to internal or external systems by supplying crafted input t...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References2
RedhatCVE
RedhatCVE
β€’added 2026/03/06 7:54 a.m.β€’6 views

CVE-2026-27984

Improper Control of Generation of Code 'Code Injection' vulnerability in Marketing Fire Widget Options widget-options allows Code Injection.This issue affects Widget Options: from n/a through = 4.1.3...

9CVSS5.8AI score0.0027EPSS
Exploits0References1
EUVD
EUVD
β€’added 2026/03/05 6:30 a.m.β€’5 views

EUVD-2026-9654

Improper Control of Generation of Code 'Code Injection' vulnerability in Marketing Fire Widget Options widget-options allows Code Injection.This issue affects Widget Options: from n/a through = 4.1.3...

6AI score0.0027EPSS
Exploits0References2
Vulnrichment
Vulnrichment
β€’added 2026/03/05 5:54 a.m.β€’5 views

CVE-2026-27984 WordPress Widget Options plugin <= 4.1.3 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Marketing Fire Widget Options widget-options allows Code Injection.This issue affects Widget Options: from n/a through = 4.1.3...

9CVSS5.8AI score0.0027EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
β€’added 2026/03/05 5:54 a.m.β€’5 views

CVE-2026-27984

Improper Control of Generation of Code 'Code Injection' vulnerability in Marketing Fire Widget Options widget-options allows Code Injection.This issue affects Widget Options: from n/a through = 4.1.3...

6AI score0.0027EPSS
Exploits0References2
Trellix
Trellix
β€’added 2026/01/15 12:0 a.m.β€’4 views

Dark Web Roast December 2025 Edition

Dark Web Roast - December 2025 Edition By Trellix Advanced Research Center Β· January 15, 2026 Executive summary December 2025 delivered a spectacular finale to the year's cybercriminal comedy show, featuring Global Ransomware-as-a-Service RaaS operator liquidating their empire for pocket change,...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
β€’added 2026/01/09 10:48 a.m.β€’8 views

CVE-2022-31980

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manageteam=...

7.2CVSS8.1AI score0.01971EPSS
Exploits1References1
RedhatCVE
RedhatCVE
β€’added 2026/01/09 10:48 a.m.β€’9 views

CVE-2022-31973

Online Fire Reporting System v1.0 is vulnerable to Delete any file via /ofrs/classes/Master.php?f=deleteimg...

6.5CVSS6.9AI score0.00928EPSS
Exploits1References1
Rows per page
Query Builder