CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

368 matches found

CNNVD•added 2022/11/05 12:0 a.m.•3 views

Sanitization Management System 安全漏洞

Sanitization Management System is a sanitization management system by Carlo Montero Personal Developer. A security vulnerability exists in Sanitization Management System, which stems from an SQL injection caused by the manipulation of the parameter id by an unknown function in its file...

9.8CVSS8.3AI score0.00458EPSS

Exploits0References3

Positive Technologies•added 2022/11/05 12:0 a.m.•3 views

PT-2022-24526 · Sourcecodester · Sourcecodester Sanitization Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Sanitization Management System affected versions not specified Description: A critical vulnerability has been found in the SourceCodester Sanitization Management System. The issue is related to an unknown function of the file...

9.8CVSS9.5AI score0.00458EPSS

Exploits0References6

Cvelist•added 2022/11/03 12:0 a.m.•18 views

CVE-2022-43062

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteappointment...

7.5AI score0.00726EPSS

Exploits1References1

CNNVD•added 2022/11/03 12:0 a.m.•7 views

Online Diagnostic Lab Management System SQL注入漏洞

Online Diagnostic Lab Management System is an online diagnostic lab management system. A security vulnerability exists in Online Diagnostic Lab Management System v1.0, which was discovered to contain a SQL injection vulnerability via the id parameter of /classes/Master.php?...

7.2CVSS7.3AI score0.00726EPSS

Exploits1References2

NVD•added 2022/11/02 8:15 p.m.•16 views

CVE-2022-43068

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletereservation...

7.2CVSS0.00726EPSS

Exploits1References1

Cvelist•added 2022/11/02 12:0 a.m.•15 views

CVE-2022-43068

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletereservation...

7.5AI score0.00726EPSS

Exploits1References1

Cvelist•added 2022/11/02 12:0 a.m.•15 views

CVE-2022-43066

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Master.php?f=deletemessage...

7.5AI score0.00821EPSS

Exploits1References1

OSV•added 2022/10/26 5:15 p.m.•1 views

CVE-2022-3673

A vulnerability, which was classified as problematic, was found in SourceCodester Sanitization Management System 1.0. Affected is an unknown function of the file /php-sms/classes/Master.php. The manipulation of the argument message leads to cross site scripting. It is possible to launch the attac...

6.1CVSS4.1AI score0.00328EPSS

Exploits0References1

OSV•added 2022/10/14 5:15 p.m.•1 views

CVE-2022-42232

Simple Cold Storage Management System v1.0 is vulnerable to SQL Injection via /csms/classes/Master.php?f=deletestorage...

7.2CVSS5.8AI score0.00854EPSS

Exploits1References1

CNNVD•added 2022/10/06 12:0 a.m.•6 views

Simple Cold Storage Management System SQL注入漏洞

Simple Cold Storage Management System is a cold storage management system. Simple Cold Storage Management System /csms/classes/Master.php?f=deletemessage SQL injection vulnerability can be exploited by a remote attacker to submit a specially crafted SQL request to manipulate a database, obtain...

7.2CVSS8.2AI score0.00854EPSS

Exploits1References2

CNVD•added 2022/09/28 12:0 a.m.•12 views

Online Pet Shop We App Master.php?f=delete_sub_category SQL Injection Vulnerability

Online Pet Shop We App is an online pet store web application by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Online Pet Shop We App version 1.0, which originates from a lack of validation of externally entered SQL statements in the...

7.2CVSS7.5AI score0.00821EPSS

Exploits1References1

CNVD•added 2022/09/28 12:0 a.m.•19 views

Online Leave Management System Master.php?f=delete_designation SQL Injection Vulnerability

Online Leave Management System is an online leave management system. SQL injection vulnerability exists in Online Leave Management System v1.0, which originates in /leavesystem/classes/Master.php?f=delete designation lacks validation of external input SQL statements. An attacker could use this...

7.2CVSS3.5AI score0.00821EPSS

Exploits1References1

NVD•added 2022/09/26 1:15 p.m.•18 views

CVE-2022-40926

Online Leave Management System v1.0 is vulnerable to SQL Injection via /leavesystem/classes/Master.php?f=deleteleavetype...

7.2CVSS0.00804EPSS

Exploits1References1

NVD•added 2022/09/26 1:15 p.m.•16 views

CVE-2022-40927

Online Leave Management System v1.0 is vulnerable to SQL Injection via /leavesystem/classes/Master.php?f=deletedesignation...

7.2CVSS0.00821EPSS

Exploits1References1