CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

NVD•added 2024/07/29 7:15 p.m.•8 views

CVE-2024-37859

Cross Site Scripting vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the page parameter to php-lfis/admin/index.php...

6.1CVSS0.00138EPSS

Exploits2References3

Cvelist•added 2024/07/29 12:0 a.m.•13 views

CVE-2024-37858

SQL Injection vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the id parameter to php-lfis/admin/categories/managecategory.php...

0.00462EPSS

Exploits2References3

Vulnrichment•added 2024/07/29 12:0 a.m.•11 views

CVE-2024-37858

SQL Injection vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the id parameter to php-lfis/admin/categories/managecategory.php...

8.3AI score0.00462EPSS

Exploits2References3

Cvelist•added 2024/07/29 12:0 a.m.•13 views

CVE-2024-37859

Cross Site Scripting vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the page parameter to php-lfis/admin/index.php...

0.00138EPSS

Exploits2References3

Vulnrichment•added 2024/07/29 12:0 a.m.•10 views

CVE-2024-37859

Cross Site Scripting vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the page parameter to php-lfis/admin/index.php...

6.8AI score0.00138EPSS

Exploits2References3

Prion•added 2023/06/28 8:15 p.m.•21 views

Sql injection

Lost and Found Information System v1.0 was discovered to contain a SQL injection vulnerability via the component /php-lfis/admin/?page=systeminfo/contactinformation...

7.5CVSS9.8AI score0.0234EPSS

Exploits3References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by