Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-34491

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00847EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-33566

Malicious code in bioql PyPI...

8.8CVSS6.9AI score0.00747EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33565

Malicious code in bioql PyPI...

8.8CVSS6.8AI score0.00802EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 3:0 a.m.4 views

CVE-2023-1607

A vulnerability was found in novel-plus 3.6.2. It has been classified as critical. This affects an unknown part of the file /common/sysFile/list. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

8.8CVSS7.8AI score0.00731EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:52 a.m.9 views

CVE-2023-2039

A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10=0ℴ=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...

8.8CVSS7.1AI score0.00802EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/09/11 12:0 a.m.21 views

CVE-2023-30058

novel-plus 3.6.2 is vulnerable to SQL Injection...

9.9AI score0.00847EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/09/11 12:0 a.m.13 views

CVE-2023-30058

novel-plus 3.6.2 is vulnerable to SQL Injection...

7.4AI score0.00847EPSS
Exploits1References3
NVD
NVD
added 2023/04/14 9:15 a.m.16 views

CVE-2023-2040

A vulnerability classified as critical has been found in novel-plus 3.6.2. Affected is an unknown function of the file /news/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

8.8CVSS7.3AI score0.00747EPSS
Exploits1References3
OSV
OSV
added 2023/04/14 9:0 a.m.11 views

CVE-2023-2041 novel-plus sql injection

A vulnerability classified as critical was found in novel-plus 3.6.2. Affected by this vulnerability is an unknown functionality of the file /category/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack can be launched remotely. The exploit...

6.3CVSS6.4AI score0.00802EPSS
Exploits1References5
CVE
CVE
added 2023/04/14 8:31 a.m.51 views

CVE-2023-2040

CVE-2023-2040 affects novel-plus version 3.6.2. The vulnerability is an SQL injection in the /news/list?limit=10&offset=0&order=desc endpoint, caused by manipulation of the sort parameter. It is exploitable remotely, and the exploit has been publicly disclosed. Multiple connected sources corrobor...

8.8CVSS7.8AI score0.00747EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/04/14 8:15 a.m.22 views

CVE-2023-2039

A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...

8.8CVSS7.3AI score0.00802EPSS
Exploits1References3
NVD
NVD
added 2023/03/23 8:15 p.m.24 views

CVE-2023-1607

A vulnerability was found in novel-plus 3.6.2. It has been classified as critical. This affects an unknown part of the file /common/sysFile/list. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

8.8CVSS6.2AI score0.00731EPSS
Exploits1References3
Prion
Prion
added 2023/03/23 8:15 p.m.15 views

Sql injection

A vulnerability was found in novel-plus 3.6.2. It has been classified as critical. This affects an unknown part of the file /common/sysFile/list. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

5.8CVSS8.9AI score0.00731EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/03/23 7:31 p.m.107 views

CVE-2023-1607

CVE-2023-1607 affects novel-plus 3.6.2. The vulnerability exists in the /common/sysFile/list component, where manipulating the sort argument enables SQL injection. Remote exploitation is possible, and the exploit has been disclosed publicly. There is no patch information in the provided documents...

8.8CVSS6.9AI score0.00731EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/03/23 7:15 p.m.19 views

Sql injection

A vulnerability was found in novel-plus 3.6.2 and classified as critical. Affected by this issue is some unknown functionality of the file DictController.java. The manipulation of the argument orderby leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

6.5CVSS9.6AI score0.00891EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/03/23 7:0 p.m.56 views

CVE-2023-1606

CVE-2023-1606 affects novel-plus 3.6.2. The vulnerability is a SQL injection in an unknown function within DictController.java caused by manipulation of the orderby argument, allowing remote exploitation. Public exploits are reported. The trait shows high-severity impact across confidentiality, i...

9.8CVSS8.3AI score0.00891EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/03/23 10:31 a.m.13 views

CVE-2023-1595 novel-plus list sql injection

A vulnerability has been found in novel-plus 3.6.2 and classified as critical. Affected by this vulnerability is an unknown functionality of the file common/log/list. The manipulation of the argument sort leads to sql injection. The attack can be launched remotely. The exploit has been disclosed ...

4.7CVSS6.1AI score0.00872EPSS
Exploits1References5
NVD
NVD
added 2023/03/23 10:15 a.m.38 views

CVE-2023-1594

A vulnerability, which was classified as critical, was found in novel-plus 3.6.2. Affected is the function MenuService of the file sys/menu/list. The manipulation of the argument sort leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the publi...

9.8CVSS8.1AI score0.01047EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/03/23 10:0 a.m.8 views

CVE-2023-1594 novel-plus list MenuService sql injection

A vulnerability, which was classified as critical, was found in novel-plus 3.6.2. Affected is the function MenuService of the file sys/menu/list. The manipulation of the argument sort leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the publi...

7.5CVSS7.6AI score0.01047EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/03/23 12:0 a.m.4 views

novel-plus SQL注入漏洞

novel-plus novel-plus is a multi-end PC, WAP reading, functional original literature CMS system. A security vulnerability exists in novel-plus version 3.6.2, which stems from a problem in the file /common/sysFile/list, where the operation of the parameter sort can lead to sql injection...

8.8CVSS5.7AI score0.00731EPSS
Exploits1References4
Rows per page
Query Builder