Lucene search
K

272 matches found

Nuclei
Nuclei
added yesterday16 views

Complete Online Job Search System 1.0 - Cross-Site Scripting

Complete Online Job Search System 1.0 contains a cross-site scripting vulnerability via index.php?q=advancesearch. id: CVE-2022-29316 info: name: Complete Online Job Search System 1.0 - Cross-Site Scripting author: arafatansari severity: high description: | Complete Online Job Search System 1.0...

9.8CVSS7AI score0.03139EPSS
Exploits0References2
Nuclei
Nuclei
added yesterday75 views

Complete Online Job Search System 1.0 - SQL Injection

Complete Online Job Search System 1.0 contains a SQL injection vulnerability via /eris/index.php?q=hiring&search=. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. id:...

7.2CVSS7AI score0.04522EPSS
Exploits1References3
Nuclei
Nuclei
added yesterday47 views

Complete Online Job Search System 1.0 - SQL Injection

Complete Online Job Search System 1.0 contains a SQL injection vulnerability via /eris/admin/company/index.php?view=edit&id=. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site...

7.2CVSS7AI score0.04522EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:8 p.m.3 views

CVE-2026-20165

In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.7, 10.1.2507.17, 10.0.2503.12, and 9.3.2411.124, a low-privileged user that does not hold the "admin" or "power" Splunk roles could retrieve sensitive information by inspectin...

6.5CVSS5.8AI score0.00166EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 6:30 p.m.5 views

EUVD-2026-11232

In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.7, 10.1.2507.17, 10.0.2503.12, and 9.3.2411.124, a low-privileged user that does not hold the "admin" or "power" Splunk roles could retrieve sensitive information by inspectin...

6.3CVSS5.8AI score0.00166EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/11 4:17 p.m.2 views

CVE-2026-20165 Sensitive Information Disclosure in MongoClient logging channel in Splunk Enterprise

In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.7, 10.1.2507.17, 10.0.2503.12, and 9.3.2411.124, a low-privileged user that does not hold the "admin" or "power" Splunk roles could retrieve sensitive information by inspectin...

6.3CVSS5.8AI score0.00166EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/11 3:47 a.m.9 views

CVE-2025-12928

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...

9.8CVSS7.3AI score0.00431EPSS
Exploits1References1
NVD
NVD
added 2025/11/10 4:15 a.m.10 views

CVE-2025-12928

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...

9.8CVSS0.00431EPSS
Exploits1References6
OSV
OSV
added 2025/11/10 4:15 a.m.4 views

CVE-2025-12928

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...

9.8CVSS5.7AI score0.00431EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/11/10 3:2 a.m.15 views

CVE-2025-12928 code-projects Online Job Search Engine login.php sql injection

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...

7.5CVSS0.00431EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/10 3:2 a.m.6 views

CVE-2025-12928 code-projects Online Job Search Engine login.php sql injection

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...

7.5CVSS6.7AI score0.00431EPSS
Exploits1References6
EUVD
EUVD
added 2025/11/10 3:2 a.m.6 views

EUVD-2025-41752

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...

7.5CVSS6.5AI score0.00431EPSS
Exploits1References7
CVE
CVE
added 2025/11/10 3:2 a.m.28 views

CVE-2025-12928

CVE-2025-12928 affects code-projects Online Job Search Engine 1.0. The vulnerability lies in an SQL injection in the /login.php login function, triggered by manipulating the username/phone parameter. It can be exploited remotely and the exploit is public. Impact is described variably across sourc...

9.8CVSS6.7AI score0.00431EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/10 12:0 a.m.9 views

PT-2025-45595

Name of the Vulnerable Software and Affected Versions code-projects Online Job Search Engine version 1.0 Description A SQL injection issue exists in code-projects Online Job Search Engine version 1.0. The issue affects an unknown function within the /login.php file. Manipulation of the...

7.5CVSS7.6AI score0.00431EPSS
Exploits1References13
CNNVD
CNNVD
added 2025/11/10 12:0 a.m.4 views

Code-Projects Online Job Search Engine SQL注入漏洞

Code-Projects Online Job Search Engine is an online job search engine from Code-Projects. A SQL injection vulnerability exists in Code-Projects Online Job Search Engine version 1.0, which stems from incorrect manipulation of the username/phone parameter in the file /login.php, which could lead to...

9.8CVSS7.7AI score0.00431EPSS
Exploits1References6
CNVD
CNVD
added 2025/10/15 12:0 a.m.5 views

Online Job Search Engine postjob.php File SQL Injection Vulnerability

Online Job Search Engine is an online job search engine. Online Job Search Engine suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter txtjobID in the file /postjob.php. An attacker can exploit this...

9.8CVSS8.3AI score0.00387EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/11 9:22 p.m.19 views

CVE-2025-11584

A vulnerability has been found in code-projects Online Job Search Engine 1.0. The affected element is an unknown function of the file /searchjob.php. The manipulation of the argument txtspecialization leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...

9.8CVSS6.8AI score0.00387EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/11 8:7 p.m.13 views

CVE-2025-11583

A flaw has been found in code-projects Online Job Search Engine 1.0. Impacted is an unknown function of the file /postjob.php. Executing manipulation of the argument txtjobID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

9.8CVSS6.9AI score0.00387EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/11 8:7 p.m.17 views

CVE-2025-11582

A vulnerability was detected in code-projects Online Job Search Engine 1.0. This issue affects some unknown processing of the file /registration.php. Performing manipulation of the argument txtusername results in sql injection. The attack may be initiated remotely. The exploit is now public and m...

9.8CVSS7.1AI score0.00391EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/10 9:31 p.m.4 views

EUVD-2025-33774

A flaw has been found in code-projects Online Job Search Engine 1.0. Impacted is an unknown function of the file /postjob.php. Executing manipulation of the argument txtjobID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

7.5CVSS6.4AI score0.00387EPSS
Exploits1References6
Rows per page
Query Builder