CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

487 matches found

Cvelist•added 2025/05/16 11:0 a.m.•12 views

CVE-2025-4770 PHPGurukul Park Ticketing Management System view-normal-ticket.php sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Park Ticketing Management System 2.0. This issue affects some unknown processing of the file /view-normal-ticket.php. The manipulation of the argument viewid leads to sql injection. The attack may be initiated remotel...

6.5CVSS0.00197EPSS

Exploits1References5

CNNVD•added 2025/05/16 12:0 a.m.•2 views

PHPGurukul Park Ticketing Management System 注入漏洞

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter viewid in the file /view-normal-ticket.php. An...

8.8CVSS8.2AI score0.00197EPSS

Exploits1References6

CNNVD•added 2025/05/16 12:0 a.m.•1 views

PHPGurukul Park Ticketing Management System 安全漏洞

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability, which originates from the lack of validation of externally-entered SQL statements in the parameter noadult/nochildren/aprice/cprice in the file...

8.8CVSS8.1AI score0.00268EPSS

Exploits1References7

Packet Storm News•added 2025/05/15 12:0 a.m.•2 views

The Tangent Space Attack

We propose a new method for retrieving the algebraic structure of a generic alternant code given an arbitrary generator matrix, provided certain conditions are met. We then discuss how this challenges the security of the McEliece cryptosystem instantiated with this family of codes. The central...

7.1AI score

Exploits0

CNVD•added 2025/05/13 12:0 a.m.•1 views

Park Ticketing Management System normal-bwdates-reports-details.php file HTML injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from an HTML injection vulnerability that stems from improper handling of the fromdate and todate parameters in the normal-bwdates-reports-details.php file. No details of the...

5.3CVSS7.2AI score0.00273EPSS

Exploits1References1

CNVD•added 2025/05/13 12:0 a.m.•1 views

Park Ticketing Management System HTML Injection Vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from an HTML injection vulnerability that stems from the mishandling of the searchdata parameter in the normal-search.php file, resulting in an HTML injection attack. No details of the...

5.3CVSS7.2AI score0.00273EPSS

Exploits1References1

Tenable Nessus•added 2025/05/05 12:0 a.m.•1 views

Device Status Query Detected (Medium)

A status query has been sent to the device, which might indicate a reconnaissance activity. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503183...

5.3AI score

Exploits0

Tenable Nessus•added 2025/05/05 12:0 a.m.•3 views

Device Status Query Detected (Critical)

5.3AI score

Exploits0

Tenable Nessus•added 2025/05/05 12:0 a.m.•3 views

Device Status Query Detected (Low)

5.3AI score

Exploits0

OSV•added 2025/05/01 3:16 p.m.•1 views

DEBIAN-CVE-2022-49871

In the Linux kernel, the following vulnerability has been resolved: net: tun: Fix memory leaks of napigetfrags kmemleak reports after running testprogs: unreferenced object 0xffff8881b1672dc0 size 232: comm "testprogs", pid 394388, jiffies 4354712116 age 841.975s hex dump first 32 bytes: e0 84 d7...

5.5CVSS5.5AI score0.00011EPSS

Exploits0References1

OSV•added 2025/05/01 3:16 p.m.•1 views

UBUNTU-CVE-2022-49871

5.5CVSS6.1AI score0.00011EPSS

Exploits0References9

OSV•added 2025/04/30 2:15 p.m.•3 views

CVE-2025-45009

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter...

5.3CVSS6.2AI score0.00273EPSS

Exploits1References1

CNNVD•added 2025/04/30 12:0 a.m.•1 views

PHPGurukul Park Ticketing Management System 安全漏洞

5.3CVSS7.2AI score0.00273EPSS

Exploits1References1

RedhatCVE•added 2025/04/27 4:9 p.m.•15 views

CVE-2025-43862

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able to access and modify APP orchestration, even though the web UI of APP orchestration is not presented for a normal user. This access control flaw allows non-admin users to make unauthorized access a...

7.6CVSS7AI score0.00147EPSS

Exploits1References1

RedhatCVE•added 2025/04/26 12:2 a.m.•5 views

CVE-2025-32796

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a vulnerability was identified in the DIFY where normal users can enable or disable apps through the API, even though the web UI button for this action is disabled and normal users are not permitted to make such changes...

6.5CVSS6.7AI score0.00187EPSS

Exploits1References1

OSV•added 2025/04/22 6:16 p.m.•1 views

CVE-2025-43947

Codemers KLIMS 1.6.DEV lacks a proper access control mechanism, allowing a normal KLIMS user to perform all the actions that an admin can perform, such as modifying the configuration, creating a user, uploading files, etc...

7.3CVSS5.8AI score0.00115EPSS

Exploits1References2