Lucene search
+L

6309 matches found

euvd
euvd
added 6 days ago6 views

EUVD-2026-43076

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Drupal Location Selector allows SQL Injection. This issue affects Location Selector versions: from 0.0.0 to 1.3.0...

6.1AI score0.00257EPSS
Exploits0References2
nvd
nvd
added last week6 views

CVE-2026-15081

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Drupal Location Selector allows SQL Injection. This issue affects Location Selector versions: from 0.0.0 to 1.3.0...

7.4CVSS0.00257EPSS
Exploits0References1
cvelist
cvelist
added last week33 views

CVE-2026-15081 Location Selector - Critical - SQL Injection - SA-CONTRIB-2026-072

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Drupal Location Selector allows SQL Injection. This issue affects Location Selector versions: from 0.0.0 to 1.3.0...

0.00257EPSS
Exploits0References1
cve
cve
added last week14 views

CVE-2026-15081

CVE-2026-15081 affects Drupal Location Selector module (versions 0.0.0–1.3.0). The vulnerability arises from a Views filter that does not sufficiently sanitize user input, allowing improper neutralization of special elements in an SQL command (SQL Injection). Impact is_high confidentiality and in...

7.4CVSS6.1AI score0.00257EPSS
Exploits0References1
osv
osv
added last week2 views

ECHO-EE84-F5BB-81BF

Bulletin has no description...

8.4CVSS6.1AI score0.00169EPSS
Exploits1References1
osv
osv
added last week1 views

MINI-28FR-54CP-88WC

Bulletin has no description...

5.3CVSS6.6AI score0.00534EPSS
Exploits0
osv
osv
added last week1 views

MINI-9F8J-JHCF-G4QF

Bulletin has no description...

5.3CVSS6.1AI score0.00413EPSS
Exploits0
osv
osv
added last week1 views

MINI-59P7-7795-X9CJ

Bulletin has no description...

5.3CVSS6.7AI score0.00482EPSS
Exploits1
osv
osv
added last week2 views

MINI-QJXC-HCCF-XC25

Bulletin has no description...

9.1CVSS6.1AI score0.00373EPSS
Exploits0
osv
osv
added last week1 views

MINI-7JM8-9258-2XJX

Bulletin has no description...

6.1CVSS6.1AI score0.00287EPSS
Exploits0
nvd
nvd
added last week7 views

CVE-2026-55472

Snipe-IT is an IT asset/license management system. Prior to 8.6.2, when Full Multiple Companies Support and scopelocationsfmcs are enabled, the API location creation endpoint detects an invalid parent-child company mismatch but does not return immediately, allowing creation of a child location...

4.3CVSS0.00197EPSS
Exploits0References3
cvelist
cvelist
added last week31 views

CVE-2026-55472 Snipe-IT: API Location Creation Bypasses FMCS Parent-Child Company Boundary Validation

Snipe-IT is an IT asset/license management system. Prior to 8.6.2, when Full Multiple Companies Support and scopelocationsfmcs are enabled, the API location creation endpoint detects an invalid parent-child company mismatch but does not return immediately, allowing creation of a child location...

4.3CVSS0.00197EPSS
Exploits0References3
cve
cve
added last week10 views

CVE-2026-55472

Snipe-IT (IT asset/license management) prior to version 8.6.2 permits creating a child location under a parent from a different company when Full Multiple Companies Support and scope_locations_fmcs are enabled. The API location creation endpoint detects an invalid parent-child company mismatch bu...

4.3CVSS6.1AI score0.00197EPSS
Exploits0References3Affected Software1
osv
osv
added last week4 views

CVE-2026-55472 Snipe-IT: API Location Creation Bypasses FMCS Parent-Child Company Boundary Validation

Snipe-IT is an IT asset/license management system. Prior to 8.6.2, when Full Multiple Companies Support and scopelocationsfmcs are enabled, the API location creation endpoint detects an invalid parent-child company mismatch but does not return immediately, allowing creation of a child location...

4.3CVSS6.1AI score0.00197EPSS
Exploits0References5
osv
osv
added last week2 views

MINI-WG22-9Q7G-94JR

Bulletin has no description...

7.8CVSS6.1AI score0.00183EPSS
Exploits0
osv
osv
added last week1 views

MINI-7937-F36J-36H4

Bulletin has no description...

5.3CVSS6.1AI score0.00413EPSS
Exploits0
osv
osv
added 2026/07/10 1:34 a.m.1 views

MINI-9PPH-VJ22-82RF

Bulletin has no description...

5.3CVSS6.1AI score0.00413EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/07/10 12:0 a.m.7 views

PT-2026-57266

Name of the Vulnerable Software and Affected Versions Snipe-IT versions prior to 8.6.2 Description When Full Multiple Companies Support and scope locations fmcs are enabled, the API location creation endpoint fails to terminate the process after detecting an invalid parent-child company mismatch...

4.3CVSS6.1AI score0.00197EPSS
Exploits0References9
osv
osv
added 2026/07/09 9:0 p.m.3 views

CGA-V85Q-HW7Q-C7HG

Bulletin has no description...

7.8CVSS6.1AI score0.00112EPSS
Exploits0
osv
osv
added 2026/07/09 7:40 p.m.2 views

MINI-HVCH-VVJ4-QVCP

Bulletin has no description...

7CVSS6.9AI score0.00157EPSS
Exploits0
Rows per page
Query Builder