Lucene search
K

4 matches found

Cvelist
Cvelist
added 6 days ago26 views

CVE-2026-52782 OpenProject: IDOR through /projects/<A>/settings/project_storages/<A_ps_id> via PATCH parameter "storages_project_storage[project_folder_id]" leads to Access to Unauthorized Resources

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is an IDOR through /projects//settings/projectstorages/ via PATCH parameter "storagesprojectstorageprojectfolderid" leads to Access to Unauthorized Resources. A project-admin in one project can...

9.9CVSS0.00258EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.4 views

Yonyou KSOA SQL injection vulnerability

Yonyou KSOA is an enterprise-level management software developed by Yonyou Corporation in China. Version 9.0 of Yonyou KSOA contains a SQL injection vulnerability, which stems from incorrect handling of the folderid parameter in the file/kmf/savefolder.jsp. This vulnerability may lead to SQL...

9.8CVSS7.2AI score0.00359EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 7:24 p.m.4 views

CVE-2021-24919

The Wicked Folders WordPress plugin before 2.8.10 does not sanitise and escape the folderid parameter before using it in a SQL statement in the wickedfolderssavesortorder AJAX action, available to any authenticated user. leading to an SQL injection...

8.8CVSS7.3AI score0.01517EPSS
Exploits2References1
securityvulns
securityvulns
added 2008/02/13 12:0 a.m.42 views

Netkom Internet Solutions &#40;folder_id&#41; Remote SQL Injection Vulnerability

Title : Netkom Internet Solutions folderid Remote SQL Injection Vulnerability Author : By Cr@zyKing [email protected] Greetz : Str0ke,CrackersChild,TheBekir,Eno7,Sabotaqe,Jani zary,GencTurk and Ayyildiz Team Users Dork : Powered by Netkom Internet Solutions | http://www.netkombelize.com...

2.1AI score
Exploits0
Rows per page
Query Builder