CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2016-1560

Malware in sbrugna...

7.2CVSS7AI score0.00456EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 3:30 a.m.•5 views

CVE-2023-27087

Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter...

7.5CVSS6.3AI score0.00198EPSS

Exploits1References1

CNNVD•added 2024/05/25 12:0 a.m.•2 views

AJ-Report SQL注入漏洞

AJ-Report is a fully open source, drag-and-drop editing visualization design tool. AJ-Report version 1.4.1 suffers from a SQL injection vulnerability, which can be exploited by an attacker to send specially crafted SQL statements to the /pageList script using the 'p' parameter to view, add, modif...

9.8CVSS7.6AI score0.00072EPSS

Exploits1References5

Prion•added 2023/03/21 7:15 p.m.•11 views

Code injection

Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter...

5CVSS7.2AI score0.00198EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/03/21 12:0 a.m.•5 views

CVE-2023-27087

Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter...

7.3AI score0.00198EPSS

Exploits1References1

Cvelist•added 2023/03/21 12:0 a.m.•14 views

CVE-2023-27087

Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter...

7.5AI score0.00198EPSS

Exploits1References1

OSV•added 2017/05/29 7:29 p.m.•11 views

CVE-2016-10378

e107 2.1.1 allows SQL injection by remote authenticated administrators via the pagelist parameter to e107admin/menus.php, related to the menuSaveVisibility function...

7.2CVSS7.6AI score

Exploits0References1

Prion•added 2017/05/29 7:29 p.m.•8 views

Sql injection

e107 2.1.1 allows SQL injection by remote authenticated administrators via the pagelist parameter to e107admin/menus.php, related to the menuSaveVisibility function...

6.5CVSS8AI score0.00456EPSS

Exploits1References1Affected Software1

NVD•added 2017/05/29 7:29 p.m.•10 views

CVE-2016-10378

e107 2.1.1 allows SQL injection by remote authenticated administrators via the pagelist parameter to e107admin/menus.php, related to the menuSaveVisibility function...

7.2CVSS7.2AI score0.00456EPSS

Exploits1References1

CVE•added 2017/05/29 7:0 p.m.•31 views

CVE-2016-10378

CVE-2016-10378 affects e107 2.1.1, where SQL injection is possible through the pagelist parameter to the admin script e107_admin/menus.php, related to the menuSaveVisibility function. The vulnerability arises from improper handling of input by that function, enabling a remote attacker with authen...

7.2CVSS7.1AI score0.00456EPSS

Exploits1References1Affected Software1

Cvelist•added 2017/05/29 7:0 p.m.•10 views

CVE-2016-10378

e107 2.1.1 allows SQL injection by remote authenticated administrators via the pagelist parameter to e107admin/menus.php, related to the menuSaveVisibility function...

7.2AI score0.00456EPSS

Exploits1References1

Exploit DB•added 2011/11/23 12:0 a.m.•71 views

PmWiki 2.2.34 - 'pagelist' Remote PHP Code Injection (1)

$r 454. if @$PageListSortCmp$o 455. $code .= "$c = $PageListSortCmp$o; "; 456. else 457. $code .= "$c = @strcasecmp$PCache$x'$o',$PCache$y'$o'; "; 458. $code .= "if $c return $r$c;\n"; 459. 460. StopWatch'PageListSort sort'; 461. if $code 462. uasort$list, 463. createfunction'$x,$y',...

7.5CVSS7AI score0.84053EPSS

Exploits12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by