Lucene search
K

6 matches found

CVE
CVE
added 2026/05/16 3:26 p.m.17 views

CVE-2021-47954

LayerBB 1.1.4 contains an unauthenticated SQL injection vulnerability in the search_query parameter. An attacker can send POST requests to /search.php with crafted search_query values (e.g., using CASE WHEN statements) to manipulate queries and extract sensitive database information. No remediati...

8.8CVSS5.9AI score0.00237EPSS
Exploits0References2
NVD
NVD
added 2025/08/28 2:15 p.m.4 views

CVE-2025-51969

A SQL Injection vulnerability exists in the product.php page of PuneethReddyHC Online Shopping System Advanced 1.0. This flaw is present in the productid GET parameter, which is not properly validated before being included in a SQL statement...

6.5CVSS0.00227EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/10/10 12:0 a.m.6 views

PT-2024-39857 · Unknown · Code-Projects Crud Operation System

Name of the Vulnerable Software and Affected Versions: code-projects Crud Operation System version 1.0 Description: A critical vulnerability was found in the code-projects Crud Operation System. This issue affects the file delete.php and is related to the manipulation of the sid argument, leading...

9.8CVSS8.1AI score0.00663EPSS
Exploits1References10
OSV
OSV
added 2024/08/19 11:15 p.m.5 views

CVE-2024-7934

A vulnerability was found in itsourcecode Project Expense Monitoring System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file execute.php. The manipulation of the argument code leads to sql injection. The attack can be launched remotely...

9.8CVSS6.5AI score0.00484EPSS
Exploits1References4
OSV
OSV
added 2024/03/09 8:15 a.m.3 views

CVE-2024-2329

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/listresourceicon.php?action=delete. The manipulation of the argument IconId leads to sql injection. The attack may be...

9.8CVSS5.7AI score0.00718EPSS
Exploits1References3
OSV
OSV
added 2019/11/26 12:49 a.m.3 views

USN-4200-1 redmine vulnerabilities

It was discovered that Redmine incorrectly handle certain inputs that could cause textile formatting errors. An attacker could possibly use this issue to cause a XSS attack. CVE-2019-17427 It was discovered that an SQL injection could allow users to access protected information via a crafted obje...

6.5CVSS6.7AI score0.04338EPSS
Exploits2References3
Rows per page
Query Builder