CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-27104

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00069EPSS

Exploits1References5

RedhatCVE•added 2025/09/10 3:25 a.m.•2 views

CVE-2025-10079

A flaw has been found in PHPGurukul Small CRM 4.0. Affected by this vulnerability is an unknown functionality of the file /get-quote.php. Executing manipulation of the argument Contact can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used...

9.8CVSS7.3AI score0.00069EPSS

Exploits1References1

CNVD•added 2025/09/10 12:0 a.m.•2 views

Small CRM /get-quote.php File SQL Injection Vulnerability

Small CRM is a customer relationship management system. Small CRM suffers from a SQL injection vulnerability, which originates from the /get-quote.php file, which does not perform security filtering on the Contact parameter. An attacker can exploit this vulnerability to illegally manipulate the...

9.8CVSS7.8AI score0.00069EPSS

Exploits1References1

NVD•added 2025/09/08 3:15 a.m.•2 views

CVE-2025-10079

9.8CVSS0.00069EPSS

Exploits1References5

OSV•added 2025/09/08 3:15 a.m.•0 views

CVE-2025-10079

9.8CVSS5.8AI score0.00069EPSS

Exploits1References5

Cvelist•added 2025/09/08 2:32 a.m.•6 views

CVE-2025-10079 PHPGurukul Small CRM get-quote.php sql injection

7.5CVSS0.00069EPSS

Exploits1References5

Vulnrichment•added 2025/09/08 2:32 a.m.•2 views

CVE-2025-10079 PHPGurukul Small CRM get-quote.php sql injection

7.5CVSS6.8AI score0.00069EPSS

Exploits1References5

CNNVD•added 2025/09/08 12:0 a.m.•2 views

PHPGurukul Small CRM SQL注入漏洞

9.8CVSS7.8AI score0.00069EPSS

Exploits1References6

Positive Technologies•added 2025/09/08 12:0 a.m.•3 views

PT-2025-36427

Name of the Vulnerable Software and Affected Versions: PHPGurukul Small CRM version 4.0 Description: A SQL injection flaw exists in PHPGurukul Small CRM version 4.0. The issue is located in the /get-quote.php file, where manipulation of the Contact argument can lead to SQL injection. This attack...

7.5CVSS7.5AI score0.00069EPSS

Exploits1References10

RedhatCVE•added 2025/05/23 6:19 a.m.•3 views

CVE-2024-9430

The Get Quote For Woocommerce – Request A Quote For Woocommerce plugin for WordPress is vulnerable to unauthorized access of Quote data due to a missing capability check on the cttepfwwploaded function in all versions up to, and including, 1.0.0. This makes it possible for unauthenticated attacke...

5.3CVSS6.7AI score0.00624EPSS

Exploits0References1

NVD•added 2024/10/31 7:15 a.m.•10 views

CVE-2024-9430

5.3CVSS0.00624EPSS

Exploits0References2

Cvelist•added 2024/10/31 6:48 a.m.•14 views

CVE-2024-9430 Get Quote For Woocommerce – Request A Quote For Woocommerce <= 1.0.0 - Missing Authorization to Unauthenticated Quote PDF and CSV Download

5.3CVSS0.00624EPSS

Exploits0References2

CVE•added 2024/10/31 6:48 a.m.•37 views

CVE-2024-9430

CVE-2024-9430 affects Get Quote For Woocommerce – Request A Quote For Woocommerce (WordPress) up to version 1.0.0. Root cause: missing capability check in ct_tepfw_wp_loaded function, enabling unauthenticated access to Quote data. Impact: unauthorized download of Quote PDF and CSV documents. Publ...

5.3CVSS5.1AI score0.00624EPSS

Exploits0References2

Patchstack•added 2024/10/30 12:0 a.m.•7 views

WordPress Get Quote For Woocommerce Plugin <= 1.0.0 is vulnerable to Broken Access Control

Software Get Quote For Woocommerce Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9430 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID ed4687422c20 Credits stehled Required...

5.3CVSS6.6AI score0.00624EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by