CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-54104

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00181EPSS

Positive Technologies•added 2025/06/28 12:0 a.m.•1 views

PT-2025-27302 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue concerns an authentication bypass in an online payment processing system. No further details are available regarding the technical aspects of the issue, such as API endpoints,...

7.3AI score

RedhatCVE•added 2025/05/22 6:47 p.m.•5 views

CVE-2021-43420

SQL injection vulnerability in Login.php in Sourcecodester Online Payment Hub v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter...

9.8CVSS8.6AI score0.00264EPSS

Exploits1

Packet Storm•added 2024/07/29 12:0 a.m.•269 views

Online Payment Hub System 1.0 Insecure Settings

==================================================================================================================================== | Title : Online Payment Hub System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1...

7.4AI score

0day.today•added 2024/06/02 12:0 a.m.•156 views

Online Payment Hub System 1.0 SQL Injection Vulnerability

Online Payment Hub System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Exploit Title: Online Payment Hub System - SQLi Authentication Bypass Exploit Author: Hamit Avşar Vendor Homepage:...

8.7AI score

Packet Storm•added 2024/05/31 12:0 a.m.•249 views

Online Payment Hub System 1.0 SQL Injection

Exploit Title: Online Payment Hub System - SQLi Authentication Bypass Date: 29.05.2024 Exploit Author: Hamit Avşar Vendor Homepage: https://www.sourcecodester.com/php/15018/online-payment-hub-using-php-and-paypal-free-source-code.html Software Link:...

7.4AI score

NVD•added 2024/02/15 4:15 p.m.•6 views

CVE-2023-7081

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSTAHSİL Online Payment System allows SQL Injection. This issue affects Online Payment System: before 14.02.2024...

9.8CVSS9.9AI score0.00072EPSS

OSV•added 2024/02/15 4:15 p.m.•0 views

CVE-2023-7081

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSTAHSİL Online Payment System allows SQL Injection.This issue affects Online Payment System: before 14.02.2024...

9.8CVSS5.8AI score0.00072EPSS

ATTACKERKB•added 2024/02/15 4:15 p.m.•3 views

CVE-2023-7081

9.8CVSS7.4AI score0.00072EPSS

Exploits0References3

Prion•added 2024/02/15 4:15 p.m.•10 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSTAHSIL Online Payment System allows SQL Injection.This issue affects Online Payment System: before 14.02.2024...

7.5CVSS9.7AI score0.00072EPSS

Vulnrichment•added 2024/02/15 3:31 p.m.•9 views

CVE-2023-7081 SQLi in PosTahsil's Online Payment System

9.8CVSS7.4AI score0.00072EPSS

CVE•added 2024/02/15 3:31 p.m.•44 views

CVE-2023-7081

CVE-2023-7081 affects POSTAHSİL Online Payment System; the issue is an SQL injection due to improper neutralization of special elements in input, impacting versions before 14.02.2024. CVSSv3.1 base score 9.8 (NETWORK, HIGH impact on confidentiality, integrity, availability). Exploitation status i...

9.8CVSS7.4AI score0.00072EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/02/15 3:31 p.m.•19 views

CVE-2023-7081 SQLi in PosTahsil's Online Payment System

9.8CVSS10AI score0.00072EPSS

Positive Technologies•added 2024/02/15 12:0 a.m.•2 views

PT-2024-15203 · Unknown · Postahsi̇L Online Payment System

Name of the Vulnerable Software and Affected Versions: POSTAHSİL Online Payment System versions prior to 14.02.2024 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

9.8CVSS9.7AI score0.00072EPSS

Exploits0References7

The Hacker News•added 2023/10/02 11:20 a.m.•32 views

Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses

A financially motivated campaign has been targeting online payment businesses in the Asia Pacific, North America, and Latin America with web skimmers for more than a year. The BlackBerry Research and Intelligence Team is tracking the activity under the name Silent Skimmer, attributing it to an...

7.1AI score

OSV•added 2023/09/15 8:15 a.m.•0 views

CVE-2023-4231

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Cevik Informatics Online Payment System allows SQL Injection.This issue affects Online Payment System: before 4.09...

9.8CVSS5.8AI score0.00181EPSS