Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

CNVD
CNVDadded 2015/08/21 12:0 a.m.1 views

sysPass 'getAccounts' Parameter SQL Injection Vulnerability

sysPass is a PHP-based Web password manager. A SQL injection vulnerability exists in sysPass 1.0.9 and earlier versions, which stems from the ajax/ajaxsearch.php script not adequately filtering the 'search' parameter. A remote attacker can exploit this vulnerability to execute arbitrary SQL...

6.5CVSS8.6AI score0.00791EPSS
Exploits1References1
Check Point Advisories
Check Point Advisoriesadded 2015/04/12 12:0 a.m.4 views

Multiple SolarWinds Orion GetAccounts SQL Injections (CVE-2014-9566)

Multiple SQL injection vulnerabilities have been reported in SolarWinds products. These vulnerabilities are due to insufficient validation of certain parameters when processed by GetAccounts. Remote attackers could exploit this vulnerability by sending HTTP requests with a crafted dir or sort...

7.5CVSS2.3AI score0.77539EPSS
Exploits8
NVD
NVDadded 2015/03/10 2:59 p.m.17 views

CVE-2014-9566

Multiple SQL injection vulnerabilities in the Manage Accounts page in the AccountManagement.asmx service in the Solarwinds Orion Platform 2015.1, as used in Network Performance Monitor NPM before 11.5, NetFlow Traffic Analyzer NTA before 4.1, Network Configuration Manager NCM before 7.3.2, IP...

7.5CVSS8AI score0.77539EPSS
Exploits8References7
Rows per page
Query Builder