CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

201 matches found

St. Joe ERP system - SQL Injection

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.8CVSS6.2AI score0.09015EPSS

Exploits1References2

Patchstack•added 2026/05/20 5:2 p.m.•7 views

WordPress Gift Cards For WooCommerce Pro plugin <= 4.2.6 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Joe Bruno, Principal Security Engineer @ Monarx in WordPress Plugin Gift Cards For WooCommerce Pro versions = 4.2.6...

10CVSS5.8AI score0.00056EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/03/26 5:2 p.m.•1 views

CVE-2026-32492

Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through = 2.1.1...

5.3CVSS5.8AI score0.00049EPSS

Exploits0References1

EUVD•added 2026/03/25 6:31 p.m.•1 views

EUVD-2026-15834

Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through = 2.1.1...

5.8AI score0.00049EPSS

Exploits0References2

NVD•added 2026/03/25 5:17 p.m.•0 views

CVE-2026-32492

Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through = 2.1.1...

5.3CVSS0.00049EPSS

Exploits0References1

ATTACKERKB•added 2026/03/25 4:14 p.m.•0 views

CVE-2026-32492

Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through = 2.1.1...

5.8AI score0.00049EPSS

Exploits0References2

Positive Technologies•added 2026/03/25 12:0 a.m.•1 views

PT-2026-28006

Name of the Vulnerable Software and Affected Versions Joe Dolson My Tickets versions n/a through 2.1.1 Description An authentication bypass exists in Joe Dolson My Tickets my-tickets due to a vulnerability allowing identity spoofing. This allows an attacker to bypass authentication controls...

5.3CVSS5.9AI score0.00049EPSS

Exploits0References3

RedhatCVE•added 2026/03/06 7:55 a.m.•3 views

CVE-2026-27406

Insertion of Sensitive Information Into Sent Data vulnerability in Joe Dolson My Tickets my-tickets allows Retrieve Embedded Sensitive Data.This issue affects My Tickets: from n/a through = 2.1.0...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References1

EUVD•added 2026/03/05 6:30 a.m.•3 views

EUVD-2026-9644

Insertion of Sensitive Information Into Sent Data vulnerability in Joe Dolson My Tickets my-tickets allows Retrieve Embedded Sensitive Data.This issue affects My Tickets: from n/a through = 2.1.0...

5.9AI score0.00016EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•2 views

PT-2026-23265

Insertion of Sensitive Information Into Sent Data vulnerability in Joe Dolson My Tickets my-tickets allows Retrieve Embedded Sensitive Data.This issue affects My Tickets: from n/a through = 2.1.0...

5.9AI score0.00016EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 9:56 a.m.•8 views

CVE-2020-12712

A vulnerability based on insecure user/password encryption in the JOE job editor component of SOS JobScheduler 1.12 and 1.13 allows attackers to decrypt the user/password that is optionally stored with a user's profile...

7.5CVSS6.5AI score0.04538EPSS

Exploits6References1

RedhatCVE•added 2025/12/10 2:22 p.m.•2 views

CVE-2025-64257

Missing Authorization vulnerability in Joe Dolson My Tickets my-tickets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects My Tickets: from n/a through = 2.1.0...

4.3CVSS7AI score0.00034EPSS

Exploits0References1

EUVD•added 2025/12/09 6:30 p.m.•1 views

EUVD-2025-202061

Missing Authorization vulnerability in Joe Dolson My Calendar my-calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects My Calendar: from n/a through = 3.6.16...

4.3CVSS6.5AI score0.00036EPSS

Exploits0References2

EUVD•added 2025/12/09 6:30 p.m.•1 views

EUVD-2025-202148

6.5AI score0.00034EPSS

Exploits0References2

NVD•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-67592

4.3CVSS0.00036EPSS

Exploits0References1

NVD•added 2025/12/09 4:18 p.m.•1 views

CVE-2025-64257

4.3CVSS0.00034EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•2 views

PT-2025-49871

CVE-2025-64257 Missing Authorization vulnerability in Joe Dolson My Tickets my-tickets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects My … https://t.co/0pJUpJNlep...

4.3CVSS6.9AI score0.00034EPSS

Exploits0References3

Positive Technologies•added 2025/12/09 12:0 a.m.•1 views

PT-2025-49966

Name of the Vulnerable Software and Affected Versions Joe Dolson My Calendar versions through 3.6.16 Description An authorization issue exists in Joe Dolson My Calendar, allowing exploitation due to incorrectly configured access control security levels. This allows unauthorized access to the...

4.3CVSS6.5AI score0.00036EPSS

Exploits0References5

EUVD•added 2025/10/27 3:30 a.m.•2 views

EUVD-2025-36002

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Open Currency Converter artiss-currency-converter allows Stored XSS.This issue affects Open Currency Converter: from n/a through = 1.5.0...

5.5AI score0.0003EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-2312

Malware in sbrugna...

3.6CVSS6.4AI score0.00144EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by