Lucene search
K

30 matches found

Nuclei
Nuclei
added yesterday59 views

Opencart Divido - Sql Injection

OpenCart Divido plugin is susceptible to SQL injection id: CVE-2018-11231 info: name: Opencart Divido - Sql Injection author: ritikchaddha severity: high description: | OpenCart Divido plugin is susceptible to SQL injection impact: | This vulnerability can lead to data theft, unauthorized access,...

8.1CVSS7.2AI score0.09054EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.13 views

RockyLinux 9 : python3.12 (RLSA-2026:19177)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19177 advisory. expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375...

9.1CVSS7.2AI score0.01279EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.15 views

RHEL 10 : python3.12 (RHSA-2026:19064)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19064 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

9.1CVSS7.2AI score0.01279EPSS
Exploits1References26
RedhatCVE
RedhatCVE
added 2026/01/09 8:53 a.m.18 views

CVE-2021-27611

SAP NetWeaver AS ABAP, versions - 700, 701, 702, 730, 731, allow a high privileged attacker to inject malicious code by executing an ABAP report when the attacker has access to the local SAP system. The attacker could then get access to data, overwrite them, or execute a denial of service...

8.2CVSS6.8AI score0.0027EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1015

Malware in sbrugna...

7.2CVSS7AI score0.01345EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0458

Malware in sbrugna...

5.1CVSS5.2AI score0.01002EPSS
Exploits2References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-33286

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01202EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4717

Malicious code in bioql PyPI...

9.3CVSS8.7AI score0.00683EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/06 3:29 p.m.5 views

CVE-2025-30099

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.50, contain an Improper Neutralization of Special Elements used in an ...

7.8CVSS7.1AI score0.00432EPSS
Exploits0References1
CVE
CVE
added 2025/05/14 11:1 p.m.57 views

CVE-2025-47783

Label Studio

7.6CVSS7AI score0.0054EPSS
Exploits1References1Affected Software1
Packet Storm News
Packet Storm News
added 2025/05/14 12:0 a.m.5 views

GenAI Security: Outsmarting the Bots with a Proactive Testing Framework

The increasing sophistication and integration of Generative AI GenAI models into diverse applications introduce new security challenges that traditional methods struggle to address. This research explores the critical need for proactive security measures to mitigate the risks associated with...

7.2AI score
Exploits0
CVE
CVE
added 2025/05/13 9:38 a.m.40 views

CVE-2024-51445

CVE-2024-51445 affects Siemens Polarion: Polarion V2310 (All versions) and Polarion V2404 (All versions

7.1CVSS7.2AI score0.00448EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2025/03/31 12:0 a.m.4 views

Dell Unity OS Command Injection Vulnerability (CNVD-2025-08302)

Dell Unity is a mid-range storage array software from Dell EMC for data storage and management. Dell Unity suffers from an OS command injection vulnerability that can be exploited by an attacker to submit a special request to delete arbitrary files...

9.1CVSS7.4AI score0.01273EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/20 10:23 a.m.7 views

CVE-2025-1023

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a time-based blind SQL Injection vulnerability in the EditEventTypes functionality. The newCountName parameter is directly concatenated into an SQL query without proper...

9.8CVSS8.3AI score0.02177EPSS
Exploits1References1
NVD
NVD
added 2025/02/19 9:15 a.m.32 views

CVE-2025-1135

A vulnerability exists in ChurchCRM 5.13.0. and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based and time-based blind SQL Injection vulnerability in the BatchWinnerEntry functionality. The CurrentFundraiser parameter is directly concatenated into an SQL...

9.3CVSS0.00683EPSS
Exploits1References1
OSV
OSV
added 2025/02/19 9:15 a.m.11 views

CVE-2025-1133

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based blind SQL Injection vulnerability in the EditEventAttendees functionality. The EID parameter is directly concatenated into an SQL query without proper...

7.2CVSS8.1AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:0 a.m.11 views

CVE-2024-28107

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. A SQL injection vulnerability has been discovered in the insertentry & saveentry when modifying records due to improper escaping of the email address. This allows any authenticated user with the...

8.8CVSS8.8AI score0.00968EPSS
Exploits1References1
CNVD
CNVD
added 2024/07/31 12:0 a.m.5 views

ChurchCRM SQL Injection Vulnerability (CNVD-2024-35168)

ChurchCRM is an open source CRM system for churches. ChurchCRM 5.8.0 and prior versions suffer from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL commands t...

8.8CVSS7.7AI score0.02978EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2023/01/23 12:0 a.m.313 views

Inout RealEstate 2.1.3 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.49 views

Cisco HyperFlex HX Command Injection Direct Check (cisco-sa-hyperflex-rce-TjjNrkpR)

Binary data cisco-sa-hyperflex-rce-TjjNrkpR-dc.nbin...

10CVSS9.8AI score0.99999EPSS
Exploits6References6
Rows per page
Query Builder