Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-37148

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01936EPSS
Exploits0References2
CNVD
CNVDadded 2022/06/30 12:0 a.m.43 views

Jorani v1.0 SQL Injection Vulnerability

Jorani is a leave management system developed by Benjamin BALET, an individual developer in France. Designed to provide small organizations with a simple workflow for leave and overtime requests. Jorani v1.0 suffers from an SQL injection vulnerability that stems from a lack of valid validation in...

9.8CVSS9.7AI score0.01936EPSS
Exploits0References1
OSV
OSVadded 2022/06/28 12:15 a.m.13 views

CVE-2022-34133

Benjamin BALET Jorani v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the Comment parameter at application/controllers/Leaves.php...

6.1CVSS6.1AI score
Exploits0References2
OSV
OSVadded 2022/06/28 12:15 a.m.12 views

CVE-2022-34132

Benjamin BALET Jorani v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at application/controllers/Leaves.php...

9.8CVSS8.2AI score
Exploits0References2
NVD
NVDadded 2022/06/28 12:15 a.m.9 views

CVE-2022-34132

Jorani v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at application/controllers/Leaves.php...

9.8CVSS0.01936EPSS
Exploits0References2
Prion
Prionadded 2022/06/28 12:15 a.m.10 views

Cross site scripting

Benjamin BALET Jorani v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the Comment parameter at application/controllers/Leaves.php...

4.3CVSS6AI score0.00489EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/06/28 12:15 a.m.14 views

Sql injection

Benjamin BALET Jorani v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at application/controllers/Leaves.php...

7.5CVSS9.7AI score0.01936EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/06/27 11:9 p.m.59 views

CVE-2022-34132

CVE-2022-34132 affects Jorani v1.0, with a SQL injection vulnerability exploitable through the id parameter in application/controllers/Leaves.php. The issue is documented across multiple feeds (NVD, CNVD, OSV, RH, CNVD mirrors) as a lack of input validation enabling access to database information...

9.8CVSS7.3AI score0.01936EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/06/27 11:9 p.m.13 views

CVE-2022-34132

Jorani v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at application/controllers/Leaves.php...

10AI score0.01936EPSS
Exploits0References2
Cvelist
Cvelistadded 2022/06/27 11:9 p.m.13 views

CVE-2022-34133

Jorani v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the Comment parameter at application/controllers/Leaves.php...

6.2AI score0.00489EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/06/27 12:0 a.m.3 views

PT-2022-22018 · Benjamin Balet · Jorani

Name of the Vulnerable Software and Affected Versions: Benjamin BALET Jorani version 1.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability can be exploited via the Comment parameter at the application/controllers/Leaves.php endpoint. Recommendations...

6.1CVSS5.9AI score0.00489EPSS
Exploits0References7
Rows per page
Query Builder