CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2026/01/09 10:58 a.m.•1 views

CVE-2025-61549

Cross-Site Scripting XSS is present on the LoginID parameter on the /PSP/app/web/reg/regdisplay.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 fixed in 19.76. Unsanitized user input is reflected in HTTP responses without proper HTML encoding or escaping. This allows...

6.1CVSS5.9AI score0.00068EPSS

Exploits2References1

OSV•added 2026/01/08 5:15 p.m.•1 views

CVE-2025-61549

6.1CVSS6.1AI score0.00068EPSS

Exploits2References1

Vulnrichment•added 2026/01/08 12:0 a.m.•2 views

CVE-2025-61549

Cross-Site Scripting XSS is present on the LoginID parameter on the /PSP/app/web/reg/regdisplay.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34. Unsanitized user input is reflected in HTTP responses without proper HTML encoding or escaping. This allows attackers to...

5.8AI score0.00068EPSS

Exploits2References1

CNNVD•added 2026/01/08 12:0 a.m.•1 views

edu Business Solutions Print Shop Pro WebDesk 安全漏洞

edu Business Solutions Print Shop Pro WebDesk is a print order management system from US-based edu Business Solutions. A security vulnerability exists in edu Business Solutions Print Shop Pro WebDesk version 18.34, which originates from a misbehavior of the parameter LoginID in the file...

6.1CVSS6AI score0.00068EPSS

Exploits2References2

Positive Technologies•added 2026/01/08 12:0 a.m.•2 views

PT-2026-1830

Name of the Vulnerable Software and Affected Versions edu Business Solutions Print Shop Pro WebDesk version 18.34 Description A cross-site scripting XSS issue exists due to unsanitized user input reflected in HTTP responses without proper HTML encoding or escaping. The issue is present on the...

6.1CVSS6.1AI score0.00068EPSS

Exploits2References3

CVE•added 2026/01/08 12:0 a.m.•9 views

CVE-2025-61549

CVE-2025-61549 affects edu Business Solutions Print Shop Pro WebDesk 18.34. The LoginID parameter on /PSP/app/web/reg/reg_display.asp is vulnerable to reflected XSS due to unsanitized input reflected in HTTP responses without proper HTML encoding. Impact: arbitrary JavaScript execution in a victi...

6.1CVSS5.9AI score0.00068EPSS

Exploits2References1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-4222

Malware in sbrugna...

4.3CVSS6.4AI score0.00323EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 11:11 p.m.•4 views

CVE-2022-32094

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the loginid parameter at doctorlogin.php...

9.8CVSS8.3AI score0.26813EPSS

Exploits1References1

OSV•added 2024/08/27 9:15 p.m.•1 views

CVE-2024-8218

A vulnerability was found in code-projects Online Quiz Site 1.0 and classified as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument loginid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to th...

9.8CVSS5.8AI score

Exploits0References5

CNNVD•added 2024/08/27 12:0 a.m.•2 views

Code-Projects Online Quiz Site SQL注入漏洞

Code-Projects Online Quiz Site is an online quiz site from Code-Projects open source. A SQL injection vulnerability exists in Online Quiz Site version 1.0, which stems from the manipulation of the loginid parameter in the file index.php that can lead to SQL injection...

9.8CVSS7.7AI score0.00106EPSS

Exploits1References6

Positive Technologies•added 2024/08/27 12:0 a.m.•2 views

PT-2024-38877 · Unknown · Code-Projects Online Quiz Site

Name of the Vulnerable Software and Affected Versions: code-projects Online Quiz Site version 1.0 Description: A critical issue affects the processing of the file index.php, where the manipulation of the loginid argument leads to SQL injection. The attack can be initiated remotely. The exploit ha...

9.8CVSS8AI score0.00106EPSS

Exploits1References12

OSV•added 2024/03/21 10:15 p.m.•0 views

CVE-2024-28521

SQL Injection vulnerability in Netcome NS-ASG Application Security Gateway v.6.3.1 allows a local attacker to execute arbitrary code and obtain sensitive information via a crafted script to the loginid parameter of the /singlelogin.php component...

7.8CVSS6.1AI score

Exploits0References1

NVD•added 2024/03/21 10:15 p.m.•8 views

CVE-2024-28521

7.8CVSS7.6AI score0.00063EPSS

Exploits1References1

Vulnrichment•added 2024/03/21 12:0 a.m.•13 views

CVE-2024-28521

8.3AI score0.00063EPSS

Exploits1References1

CNNVD•added 2024/03/21 12:0 a.m.•1 views

Netentsec NS-ASG Application Security Gateway SQL注入漏洞

NetentSec NS-ASG Application Security Gateway is an application security gateway from China NetentSec. A SQL injection vulnerability exists in Netentsec NS-ASG Application Security Gateway version v.6.3.1, which can be exploited to allow a local attacker to execute arbitrary code and obtain...

7.8CVSS8AI score0.00063EPSS

Exploits1References2

Positive Technologies•added 2023/12/17 12:0 a.m.•1 views

PT-2023-32812 · Netentsec · Netentsec Ns-Asg Application Security Gateway

Name of the Vulnerable Software and Affected Versions: Netentsec NS-ASG Application Security Gateway version 6.3.1 Description: A critical issue has been found in the Netentsec NS-ASG Application Security Gateway. This issue affects the file /admin/singlelogin.php?submit=1 and is related to the...

9.8CVSS7.7AI score0.00053EPSS

Exploits1References8

OSV•added 2022/07/01 9:15 p.m.•0 views

CVE-2022-32093

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the loginid parameter at adminlogin.php...

9.8CVSS5.8AI score

Exploits0References1