Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/01/27 4:32 p.m.4 views

CVE-2026-1481 Out-of-band SQL injection in Quatuor Performance Evaluation

An out-of-band SQL injection vulnerability OOB SQLi has been detected in the Performance Evaluation EDD application developed by Gabinete Técnico de Programación. Exploiting this vulnerability in the parameter 'Idusuario' in '/evaluacionobjetivosanyosigverauto.aspx', could allow an attacker to...

9.3CVSS5.8AI score0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/27 4:30 p.m.19 views

CVE-2026-1478 Out-of-band SQL injection in Quatuor Performance Evaluation

An out-of-band SQL injection vulnerability OOB SQLi has been detected in the Performance Evaluation EDD application developed by Gabinete Técnico de Programación. Exploiting this vulnerability in the parameter 'Idusuario' and 'Idevaluacion’ in ‘/evaluacionhcaevalua.aspx’, could allow an attacker ...

9.3CVSS0.00327EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/27 4:28 p.m.2 views

CVE-2026-1475

An out-of-band SQL injection vulnerability OOB SQLi has been detected in the Performance Evaluation EDD application developed by Gabinete Técnico de Programación. Exploiting this vulnerability in the parameter ‘Idusuario' in ‘/evaluacionaccionesevalua.aspx’, could allow an attacker to extract...

9.3CVSS5.8AI score0.00327EPSS
Exploits0References2
CVE
CVE
added 2026/01/27 4:26 p.m.24 views

CVE-2026-1472

CVE-2026-1472 : An out-of-band SQL injection (OOB SQLi) vulnerability affects the Performance Evaluation (EDD) application by Gabinete Técnico de Programación. Exploitation targets the txAny parameter in /evaluacion_competencias_autoeval_list.aspx to exfiltrate data through external channels, com...

9.3CVSS5.8AI score0.00327EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.6 views

PT-2026-4973

An out-of-band SQL injection vulnerability OOB SQLi has been detected in the Performance Evaluation EDD application developed by Gabinete Técnico de Programación. Exploiting this vulnerability in the parameter 'Id usuario' in ‘/evaluacion acciones ver auto.aspx’, could allow an attacker to extrac...

9.3CVSS5.8AI score0.00327EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2024/03/20 12:0 a.m.340 views

Blood Bank 1.0 - 'bid' SQLi

Exploit Title: Blood Bank 1.0 - 'bid' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/11/BloodBankInPHPWithSourcecode.zip Version: 1.0 Tested on:...

7.8CVSS7.8AI score0.00795EPSS
Exploits4
Rows per page
Query Builder