CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2021-30371

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00664EPSS

Exploits0References3

OSV•added 2022/01/25 1:15 p.m.•4 views

CVE-2021-45802

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the email and phone parameter values are added to the SQL query without any verification at the time of membership registration...

9.8CVSS5.8AI score0.01313EPSS

Exploits1References2

OSV•added 2022/01/25 1:15 p.m.•3 views

CVE-2021-45803

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation...

8.8CVSS7.3AI score0.01179EPSS

Exploits1References2

NVD•added 2022/01/25 1:15 p.m.•24 views

CVE-2021-45802

9.8CVSS0.01313EPSS

Exploits1References2

CVE•added 2022/01/25 12:56 p.m.•48 views

CVE-2021-45803

CVE-2021-45803 affects MartDevelopers iResturant 1.0. The vulnerability is a SQL Injection where the view parameter value is concatenated into a SQL query when viewing a reservation, enabling unauthorized DB access. Root cause: lack of input validation/parameterization in the SQL used to fetch re...

8.8CVSS9AI score0.01179EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/01/25 12:56 p.m.•26 views

CVE-2021-45802

10AI score0.01313EPSS

Exploits1References2

OSV•added 2021/12/20 8:15 p.m.•2 views

CVE-2021-43439

RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely...

9.8CVSS5.9AI score0.0344EPSS

Exploits0References2

NVD•added 2021/12/20 8:15 p.m.•9 views

CVE-2021-43438

Stored XSS in Signup Form in iResturant 1.0 Allows Remote Attacker to Inject Arbitrary code via NAME and ADDRESS field...

5.4CVSS0.00664EPSS

Exploits0References2

NVD•added 2021/12/20 8:15 p.m.•7 views

CVE-2021-43439

RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely...

10CVSS0.0344EPSS

Exploits0References2

Prion•added 2021/12/20 8:15 p.m.•18 views

Cross site scripting

Stored XSS in Signup Form in iResturant 1.0 Allows Remote Attacker to Inject Arbitrary code via NAME and ADDRESS field...

3.5CVSS5.4AI score0.00664EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/12/20 7:22 p.m.•13 views

CVE-2021-43438

Stored XSS in Signup Form in iResturant 1.0 Allows Remote Attacker to Inject Arbitrary code via NAME and ADDRESS field...

5.6AI score0.00664EPSS

Exploits0References2

CVE•added 2021/12/20 7:22 p.m.•43 views

CVE-2021-43438

The CVE-2021-43438 entry describes a Stored XSS vulnerability in iResturant 1.0, arising from insufficient input sanitization in the signup/registry form. The attack requires injecting hostile content via the NAME and ADDRESS fields, enabling remote code injection as described in the NVD entry. T...

5.4CVSS5.4AI score0.00664EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/12/20 7:13 p.m.•12 views

CVE-2021-43439

RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely...

9.8AI score0.0344EPSS

Exploits0References2

CVE•added 2021/12/20 7:13 p.m.•52 views

CVE-2021-43439

CVE-2021-43439 : RCE in the Add Review Function of iResturant 1.0 allows a remote attacker to execute commands. The NVD entry lists CVSSv3.1 base score 9.8 (CRITICAL) with network access, no user interaction, and high confidentiality/integrity/availability impact. Connected documents provide cont...

10CVSS9.5AI score0.0344EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by