CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-28694

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00393EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 3:22 a.m.•5 views

CVE-2023-24684

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php...

7.2CVSS8.3AI score0.00393EPSS

Exploits1References1

Vulnrichment•added 2024/07/26 5:31 p.m.•21 views

CVE-2024-39304 ChurchCRM SQL Injection Vulnerability

ChurchCRM is an open-source church management system. Versions of the application prior to 5.9.2 are vulnerable to an authenticated SQL injection due to an improper sanitization of user input. Authentication is required, but no elevated privileges are necessary. This allows attackers to inject SQ...

8.8CVSS7.6AI score0.03458EPSS

Exploits2References2

NVD•added 2023/02/09 10:15 p.m.•13 views

CVE-2023-24684

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php...

7.2CVSS7.3AI score0.00393EPSS

Exploits1References4

Prion•added 2023/02/09 10:15 p.m.•12 views

Sql injection

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php...

5.8CVSS7.2AI score0.00393EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/02/09 12:0 a.m.•15 views

CVE-2023-24684

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php...

7.5AI score0.00393EPSS

Exploits1References3

CVE•added 2023/02/09 12:0 a.m.•97 views

CVE-2023-24684

CVE-2023-24684 affects ChurchCRM v4.5.3 and earlier, with a SQL injection vulnerability exploitable via the EID parameter in GetText.php. The issue is documented across multiple sources (NVD, RH, OSV, CNNVD, CVE records) as a high-severity flaw (CVSS v3.1: 7.2) with network access, low attack com...

7.2CVSS7.2AI score0.00393EPSS

Exploits1References4Affected Software1

CNNVD•added 2023/02/09 12:0 a.m.•2 views

ChurchCRM SQL注入漏洞

ChurchCRM is an open source CRM system for churches. A security vulnerability exists in ChurchCRM v4.5.3 and earlier versions that stems from the presence of a SQL injection vulnerability via the EID parameter in GetText.php...

7.2CVSS7.2AI score0.00393EPSS

Exploits1References5

Vulnrichment•added 2023/02/09 12:0 a.m.•5 views

CVE-2023-24684

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php...

8.5AI score0.00393EPSS

Exploits1References3

Packet Storm•added 2016/07/26 12:0 a.m.•42 views

PHP gettext 1.0.12 Code Execution

CVE-2016-6175 gettext.php | @kmkzsecurity Project Homepage: https://launchpad.net/php-gettext/ Download: https://launchpad.net/php-gettext/trunk/1.0.12/+download/php-gettext-1.0.12.tar.gz Version: 1.0.12 latest release Tested on: Linux Debian, PHP 5.6.19-2+b1 CVSS: 7.1 OVE ID: OVE-20160705-0004 C...

9.6AI score0.10928EPSS

Exploits4

OpenVAS•added 2013/12/30 12:0 a.m.•18 views

WebPagetest 'file' parameter Local File Disclosure Vulnerability

WebPagetest is prone to local file disclosure vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7AI score

Exploits0References4

Packet Storm•added 2013/12/24 12:0 a.m.•17 views

WebPagetest 2.7 Local File Disclosure

Author: TUNISIAN CYBER + Exploit Title: WebPagetest 2.7 LFD Vulnerability + Date: 24-12-2013 + Category: WebApp + Vendor: http://code.google.com/p/webpagetest/downloads/detail?name=webpagetest2.7.zip&can=2&q= + Google Dork: n/a + Tested on: KaliLinux/Debian 3.7.2 + Friend's blog:...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by