Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

CNNVD
CNNVDadded 2022/05/26 12:0 a.m.3 views

Jfinal CMS SQL注入漏洞

Jfinal CMS is a powerful information consulting website developed by java, using the simple and powerful JFinal as a web framework, template engine with beetl, database with mysql, front-end bootstrap framework. jfinal CMS version 5.1 has a SQL injection vulnerability, the vulnerability originate...

9.8CVSS5.9AI score0.00245EPSS
Exploits1References2
Veracode
Veracodeadded 2022/01/25 5:8 a.m.8 views

SQL Injection

github.com/navidrome/navidrome is vulnerable to SQL injection. The vulnerability exists in OrderBy function of criteria.go due to not handling the conditional sql statements properly which allows a malicious attacker to inject and execute arbitrary SQL...

6.5CVSS3.3AI score0.00294EPSS
Exploits0References3Affected Software2
CNVD
CNVDadded 2017/05/06 12:0 a.m.1 views

SQL Injection Vulnerability in Zendo 9.1.2 zentao\lib\base\dao\dao.class.php Page

Zendo is an open source project management software. Zendo project management software version 9.1.2 zentao\lib\base\dao\dao.class.php page SQL injection vulnerability. The orderBy function fails to filter the data submitted by the user, allowing an attacker to exploit the vulnerability to obtain...

7.6AI score
Exploits0
Rows per page
Query Builder