Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2024/09/02 5:15 a.m.10 views

CVE-2024-7871

SQL Injection in online dictionary function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the word parameter...

8.8CVSS0.00457EPSS
Exploits0References1
OSV
OSVadded 2024/09/02 5:15 a.m.1 views

CVE-2024-7871

SQL Injection in online dictionary function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the word parameter...

8.7CVSS6.1AI score
Exploits0References1
CVE
CVEadded 2024/09/02 4:0 a.m.43 views

CVE-2024-7871

CVE-2024-7871: SQL Injection in the online dictionary function of Easytest Online Test Platform (versions 24E01 and earlier). Root cause: vulnerable handling of the word parameter enables arbitrary SQL execution by remote authenticated users. Impact notes (from CVSS): high confidentiality, integr...

8.8CVSS9AI score0.00457EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2024/09/01 12:0 a.m.2 views

PT-2024-38648 · Unknown · Easytest Online Test Platform

Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands via the word parameter in the online dictionary function. This can potentially lead to...

8.8CVSS8.2AI score0.00457EPSS
Exploits0References7
hackapp
hackappadded 2016/04/01 8:48 a.m.8 views

PONS Online Dictionary - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application PONS Online Dictionary published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
Metasploit
Metasploitadded 2014/11/24 6:10 p.m.28 views

Microsoft SQL Server SUSER_SNAME Windows Domain Account Enumeration

This module can be used to bruteforce RIDs associated with the domain of the SQL Server using the SUSERSNAME function. This is similar to the smblookupsid module, but executed through SQL Server queries as any user with the PUBLIC role everyone. Information that can be enumerated includes Windows...

7.9AI score
Exploits0
xssed
xssedadded 2008/04/17 12:0 a.m.9 views

Unfixed XSS vulnerability at www.websters-online-dictionary.org

Security researcher cueballr, has submitted on 17/04/2008 a cross-site-scripting XSS vulnerability affecting www.websters-online-dictionary.org, which at the time of submission ranked 18844 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on...

Exploits0References1
Rows per page
Query Builder