Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.8 views

CVE-2021-27644

In Apache DolphinScheduler before 1.3.6 versions, authorized users can use SQL injection in the data source center. Only applicable to MySQL data source with internal login account password...

8.8CVSS7.8AI score0.01861EPSS
Exploits0References1
OSV
OSV
added 2025/08/15 3:15 a.m.6 views

CVE-2025-9002

A vulnerability was identified in Surbowl dormitory-management-php 1.0. This affects an unknown part of the file login.php. The manipulation of the argument Account leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...

9.8CVSS5.7AI score0.00505EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 3:18 p.m.7 views

CVE-2020-21237

An issue in the user login box of LJCMS v1.11 allows attackers to hijack user accounts via brute force attacks...

9.8CVSS6.9AI score0.01093EPSS
Exploits1
CVE
CVE
added 2025/02/10 3:43 p.m.815 views

CVE-2025-24032

PAM-PKCS#11 (Linux-PAM) vulnerability CVE-2025-24032 affects pam_pkcs11-0.6.0 and later up to 0.6.12/0.6.13 era, where the default cert_policy of none may bypass private-key signature checks. An attacker could create a token containing the user’s public data (e.g., certificate) and a known PIN an...

9.2CVSS7.7AI score0.00677EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2022/03/29 12:15 p.m.7 views

CVE-2022-23903

A Cross Site Scripting XSS vulnerability exists in pearadmin pear-admin-think =5.0.6, which allows a login account to access arbitrary functions and cause stored XSS through a fake User-Agent...

5.4CVSS6.2AI score0.00553EPSS
Exploits1References2
Prion
Prion
added 2022/03/29 12:15 p.m.14 views

Cross site scripting

A Cross Site Scripting XSS vulnerability exists in pearadmin pear-admin-think =5.0.6, which allows a login account to access arbitrary functions and cause stored XSS through a fake User-Agent...

3.5CVSS5.2AI score0.00553EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2021/06/17 12:0 a.m.9 views

Information leakage vulnerability in Chien Wang CRM customer management system

Thousand Wonders Software is a professional software developer. There is an information leakage vulnerability in Chivan's CRM customer management system, which can be exploited by attackers to obtain login account passwords...

6.7AI score
Exploits0
exploitpack
exploitpack
added 2018/12/24 12:0 a.m.23 views

WSTMart 2.0.8 - Cross-Site Request Forgery (Add Admin)

WSTMart 2.0.8 - Cross-Site Request Forgery Add Admin Exploit Title: WSTMart 2.0.8 - Cross-Site Request Forgery Add Admin Date: 2018-12-23 Exploit Author: linfeng Vendor Homepage:https://github.com/wstmall/wstmart/ Software Link:http://www.wstmart.net/ Version: WSTMart 2.0.8181212 CVE...

6.8CVSS0.6AI score0.02248EPSS
Exploits5
0day.today
0day.today
added 2018/12/24 12:0 a.m.79 views

WSTMart 2.0.8 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: WSTMart 2.0.8 - Cross-Site Request Forgery Add Admin Exploit Author: linfeng Vendor Homepage:https://github.com/wstmall/wstmart/ Software Link:http://www.wstmart.net/ Version: WSTMart 2.0.8181212 CVE :CVE-2018-19138 0x02 CSRF Po...

6.8CVSS0.3AI score0.02248EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2011/08/11 12:0 a.m.41 views

BlackBerry Enterprise Server PNG and TIFF Image Processing Vulnerabilities (KB27244)

The version of BlackBerry Enterprise Server on the remote host reportedly contains multiple remote code execution vulnerabilities in its image processing library : - An unspecified error within the BlackBerry MDS Connection Service when processing PNG and TIFF images on a web page being viewed on...

9.8CVSS8.5AI score0.43382EPSS
Exploits8References6
Rows per page
Query Builder