CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

RedhatCVE•added 2026/03/26 3:3 p.m.•1 views

CVE-2026-32888

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Versions contain an SQL Injection in the Items search functionality. When the custom attribute search feature is enabled searchcustom filter, user-supplied input from the search GET...

8.8CVSS6.2AI score0.00035EPSS

Exploits1References1

CVE•added 2026/03/20 2:14 a.m.•3 views

CVE-2026-32888

CVE-2026-32888 affects Open Source Point of Sale (PHP, CodeIgniter). A SQL Injection exists in the Items search functionality when the custom attribute search feature (search_custom) is enabled: user input from the search GET parameter is interpolated directly into a HAVING clause without paramet...

8.8CVSS6.2AI score0.00035EPSS

Exploits1References1Affected Software1

OSV•added 2025/06/10 11:49 a.m.•5 views

BIT-MARIADB-MIN-2021-46666

MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

5.5CVSS6.3AI score0.00063EPSS

Exploits1References4

OSV•added 2024/03/06 11:6 a.m.•23 views

BIT-MYSQL-CLIENT-2021-46666

MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

5.5CVSS6.3AI score0.00063EPSS

Exploits1References4

OSV•added 2024/03/06 11:4 a.m.•22 views

BIT-MARIADB-2021-46666

MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

5.5CVSS6.3AI score0.00063EPSS

Exploits1References4

RedHat Linux•added 2023/11/08 3:38 p.m.•2 views

mariadb: crash when using HAVING with NOT EXIST predicate in an equality

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/itemsubselect.cc, affecting availability...

7.5CVSS7.3AI score0.00142EPSS

Exploits1References4

RedHat Linux•added 2023/11/08 3:38 p.m.•5 views

mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING

A flaw was found in the MariaDB Server. It contains a use-after-free in the component, mywildcmp8bitimpl at /strings/ctype-simple.c, affecting availability...

7.5CVSS7.3AI score0.00133EPSS

Exploits1References4

Amazon•added 2023/05/31 12:0 a.m.•48 views

Medium: mariadb

Issue Overview: getsortbytable in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY. CVE-2021-46657 MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECTLEX::nestlevel is local to each VIEW. CVE-2021-46659 MariaDB through...

7.5CVSS7.3AI score0.00295EPSS

Exploits9

RedHat Linux•added 2022/08/09 12:23 p.m.•1 views

mariadb: crash when using HAVING with IS NULL predicate in an equality

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/itemcmpfunc.h, impacting availability...

7.5CVSS7.3AI score0.00186EPSS

Exploits1References4

RedHat Linux•added 2022/08/02 10:9 a.m.•3 views

mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING

A flaw was found in the MariaDB Server. It contains a use-after-free in the component, mywildcmp8bitimpl at /strings/ctype-simple.c, affecting availability...

7.5CVSS7.3AI score0.00133EPSS

Exploits1References4

RedHat Linux•added 2022/07/28 4:6 p.m.•2 views

mariadb: crash when using HAVING with NOT EXIST predicate in an equality

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/itemsubselect.cc, affecting availability...

7.5CVSS7.3AI score0.00142EPSS

Exploits1References4

OSV•added 2022/03/19 11:3 a.m.•3 views

OESA-2022-1587 mariadb security update

MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs a...

7.5CVSS7.1AI score0.00472EPSS

Exploits10References11

Tenable Nessus•added 2022/02/09 12:0 a.m.•51 views

MariaDB 10.5.0 < 10.5.11 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.5.11. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.5.11 advisory. - MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

5.5CVSS6.9AI score0.00083EPSS

Exploits2References3

Tenable Nessus•added 2022/02/09 12:0 a.m.•42 views

MariaDB 10.3.0 < 10.3.30 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.3.30. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.3.30 advisory. - MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

5.5CVSS6.9AI score0.00083EPSS

Exploits2References3