CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

OSV•added 2026/06/16 11:47 a.m.•4 views

BIT-MARIADB-MIN-2026-44173 MariaDB: FILE privilege was not checked for subqueries in the FROM clause

MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, MariaDB allowed SELECT ... INTO OUTFILE and SELECT ... INTO DUMPFILE without verifying the FILE privileg...

5.3CVSS5.2AI score0.00153EPSS

Exploits0References3

OSV•added 2026/06/16 11:47 a.m.•3 views

BIT-MARIADB-2026-44173 MariaDB: FILE privilege was not checked for subqueries in the FROM clause

5.3CVSS5.2AI score0.00153EPSS

Exploits0References3

NVD•added 2026/06/12 6:16 p.m.•9 views

CVE-2026-44173

5.3CVSS0.00153EPSS

Exploits0References2

OSV•added 2026/06/12 6:16 p.m.•5 views

ALPINE-CVE-2026-44173

5.3CVSS5.2AI score0.00153EPSS

Exploits0References1

Cvelist•added 2026/06/12 5:34 p.m.•34 views

CVE-2026-44173 MariaDB: FILE privilege was not checked for subqueries in the FROM clause

5CVSS0.00153EPSS

Exploits0References2

EUVD•added 2026/06/12 5:34 p.m.•7 views

EUVD-2026-36518

5CVSS5.2AI score0.00153EPSS

Exploits0References2

Vulnrichment•added 2026/06/12 5:34 p.m.•9 views

CVE-2026-44173 MariaDB: FILE privilege was not checked for subqueries in the FROM clause

5CVSS5.3AI score0.00153EPSS

Exploits0References2

CVE•added 2026/06/12 5:34 p.m.•41 views

CVE-2026-44173

CVE-2026-44173 affects MariaDB server: the FILE privilege was not checked for subqueries in the FROM clause, allowing potential leakage of file operations via SELECT ... INTO OUTFILE/DUMPFILE. Affected versions include MariaDB 10.6.1–10.6.25, 10.11.1–10.11.16, 11.4.1–11.4.10, 11.8.1–11.8.6, and 1...

5.3CVSS5.2AI score0.00153EPSS

Exploits0References2Affected Software1

AlpineLinux•added 2026/06/12 5:34 p.m.•7 views

CVE-2026-44173

5.3CVSS5.2AI score0.00153EPSS

Exploits0References2

NVD•added 2026/02/20 11:15 p.m.•11 views

CVE-2019-25431

delpino73 Blue-Smiley-Organizer 1.32 contains an SQL injection vulnerability in the datetime parameter that allows unauthenticated attackers to manipulate database queries. Attackers can inject SQL code through POST requests to extract sensitive data using boolean-based blind and time-based blind...

8.8CVSS0.00262EPSS

Exploits0References3

Cvelist•added 2025/12/10 11:5 p.m.•19 views

CVE-2025-67509 MySQLSelectTool Read-Only Bypass via SELECT INTO OUTFILE Allows Arbitrary File Write

Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool e.g., for LLM agent querying, however, validation based on the first keyword e.g.,...

8.2CVSS0.00249EPSS

Exploits0References3

EUVD•added 2025/12/10 11:5 p.m.•4 views

EUVD-2025-202171

8.2CVSS7.4AI score0.00249EPSS

Exploits0References4

OSV•added 2025/12/10 11:5 p.m.•4 views

CVE-2025-67509 MySQLSelectTool Read-Only Bypass via SELECT INTO OUTFILE Allows Arbitrary File Write

8.2CVSS7.8AI score0.00249EPSS

Exploits0References5

Vulnrichment•added 2025/12/10 11:5 p.m.•4 views

CVE-2025-67509 MySQLSelectTool Read-Only Bypass via SELECT INTO OUTFILE Allows Arbitrary File Write

8.2CVSS7.6AI score0.00249EPSS

Exploits0References3

CVE•added 2025/12/10 11:5 p.m.•14 views

CVE-2025-67509

CVE-2025-67509 affects the Neuron PHP framework up to version 2.8.11, where the MySQLSelectTool is vulnerable to a read-only bypass that permits file writes via SQL constructs like INTO OUTFILE/INTO DUMPFILE. Validation that relies on the first keyword (e.g., SELECT) and a forbidden-keyword list ...

8.2CVSS7.6AI score0.00249EPSS

Exploits0References3Affected Software1

Snyk•added 2025/12/09 5:19 p.m.•1 views

Arbitrary Code Injection

Overview neuron-core/neuron-ai is a The PHP Agentic Framework. Affected versions of this package are vulnerable to Arbitrary Code Injection via the validation based on the first keyword e.g., SELECT and a forbidden-keyword list does not block file-writing constructs such in the MySQLSelectTool. A...

8.8CVSS9AI score0.00249EPSS

Exploits0References2

OSV•added 2025/12/09 5:19 p.m.•5 views

GHSA-J8G6-5GQC-MQ36 Neuron MySQLSelectTool “read-only” bypass via `SELECT ... INTO OUTFILE` (file write → potential RCE)

Impact MySQLSelectTool is intended to be a read-only SQL tool e.g., for LLM agent querying. However, validation based on the first keyword e.g., SELECT and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can...

8.2CVSS9.1AI score0.00249EPSS

Exploits0References5

Github Security Blog•added 2025/12/09 5:19 p.m.•12 views

Neuron MySQLSelectTool “read-only” bypass via `SELECT ... INTO OUTFILE` (file write → potential RCE)

8.2CVSS9.2AI score0.00249EPSS

Exploits0References5Affected Software1

OSV•added 2019/10/09 12:15 p.m.•2 views

CVE-2019-17370

OTCMS v3.85 allows arbitrary PHP Code Execution because admin/sysCheckFiledeal.php blocks "into outfile" in a SELECT statement, but does not block the "into//outfile" manipulation. Therefore, the attacker can create a .php file...

7.2CVSS7.2AI score0.02071EPSS

Exploits1References1

OSV•added 2019/06/07 5:29 p.m.•2 views

CVE-2018-19462

admin\db\DoSql.php in EmpireCMS through 7.5 allows remote attackers to execute arbitrary PHP code via SQL injection that uses a .php filename in a SELECT INTO OUTFILE statement to admin/admin.php...

7.2CVSS6.1AI score0.0221EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by