CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

168 matches found

EUVD•added 2026/04/05 9:30 p.m.•2 views

EUVD-2019-20102

OpenDocMan 1.3.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'where' parameter. Attackers can send GET requests to search.php with malicious SQL payloads in the 'where' parameter to extract sensitiv...

8.8CVSS6AI score0.001EPSS

Exploits1References4

NVD•added 2026/04/05 9:16 p.m.•3 views

CVE-2019-25684

8.8CVSS0.001EPSS

Exploits1References3

ATTACKERKB•added 2026/04/05 8:45 p.m.•1 views

CVE-2019-25684

8.8CVSS6AI score0.001EPSS

Exploits1References3Affected Software1

CVE•added 2026/04/05 8:45 p.m.•7 views

CVE-2019-25684

OpenDocMan 1.3.4 is vulnerable to an SQL injection via the where parameter in the search.php endpoint. The issue arises from unsafely constructed SQL queries that allow unauthenticated attackers to manipulate database queries and potentially extract sensitive information. Documented impact includ...

8.8CVSS6AI score0.001EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2026/04/05 8:45 p.m.•2 views

CVE-2019-25684 OpenDocMan 1.3.4 SQL Injection via where Parameter

8.8CVSS6AI score0.001EPSS

Exploits1References3

CNNVD•added 2026/04/05 12:0 a.m.•3 views

OpenDocMan SQL注入漏洞

OpenDocMan is a free, web-based open-source document management system DMS from the OpenDocMan community. It aims to help companies meet ISO 17025 document management requirements. Version 1.3.4 of OpenDocMan contains a SQL injection vulnerability. This vulnerability allows unverified attackers t...

8.8CVSS5.8AI score0.001EPSS

Exploits1References3