Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 6 days ago4 views

PT-2026-44879

The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p1 parameter. Attackers can send GET requests to sever graph.php with crafted SQL payloads to extract sensitive databa...

8.8CVSS6.1AI score0.00068EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/01/09 9:28 a.m.7 views

CVE-2023-49283

microsoft-graph-core the Microsoft Graph Library for PHP. The Microsoft Graph Beta PHP SDK published packages which contained test code that enabled the use of the phpInfo function from any application that could access and execute the file at...

5.4CVSS6.7AI score0.00291EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 5:4 a.m.6 views

CVE-2023-49282

msgraph-sdk-php is the Microsoft Graph Library for PHP. The Microsoft Graph PHP SDK published packages which contained test code that enabled the use of the phpInfo function from any application that could access and execute the file at vendor/microsoft/microsoft-graph/tests/GetPhpInfo.php. The...

5.4CVSS6.7AI score0.00157EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/12/05 10:44 p.m.23 views

CVE-2023-49283 Test code in published microsoft-graph-core package exposes phpinfo()

microsoft-graph-core the Microsoft Graph Library for PHP. The Microsoft Graph Beta PHP SDK published packages which contained test code that enabled the use of the phpInfo function from any application that could access and execute the file at...

5.4CVSS6.1AI score0.00291EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 5:12 a.m.1 views

SUSE CVE-2015-8369

SQL injection vulnerability in include/topgraphheader.php in Cacti 0.8.8f and earlier allows remote attackers to execute arbitrary SQL commands via the rraid parameter in a properties action to graph.php...

7.5CVSS9.3AI score0.00495EPSS
Exploits4References5
CNVD
CNVDadded 2015/12/25 12:0 a.m.1 views

Cacti SQL Injection Vulnerability (CNVD-2015-08486)

Cacti is a suite of open source network traffic monitoring and analysis tools from the Cacti Group. The tool through snmpget to obtain data , using RRDtool drawing graphs to analyze , and provide data and user management features . A SQL injection vulnerability exists in Cacti versions prior to...

7.5CVSS8.6AI score0.00495EPSS
Exploits4References1
OSV
OSVadded 2015/12/17 7:59 p.m.1 views

DEBIAN-CVE-2015-8369

SQL injection vulnerability in include/topgraphheader.php in Cacti 0.8.8f and earlier allows remote attackers to execute arbitrary SQL commands via the rraid parameter in a properties action to graph.php...

7.5CVSS9.3AI score0.00495EPSS
Exploits4References1
RedHat Linux
RedHat Linuxadded 2010/08/20 2:42 a.m.4 views

No title provided

SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rraid parameter in a GET request in conjunction with a valid rraid value in a POST request or a cookie, which causes the POST or cookie value to bypass the...

7.5CVSS6AI score0.00139EPSS
Exploits1References3
Rows per page
Query Builder