Lucene search
K

184 matches found

CNNVD
CNNVD
added 2025/11/23 12:0 a.m.6 views

itsourcecode COVID Tracking System SQL注入漏洞

itsourcecode COVID Tracking System is a new coronavirus tracking system open-sourced by itsourcecode. An SQL injection vulnerability exists in version 1.0 of itsourcecode COVID Tracking System, which stems from a misbehavior of the parameter ID by an unknown function in the file...

8.8CVSS6.9AI score0.00276EPSS
Exploits1References6
CNVD
CNVD
added 2025/11/20 12:0 a.m.4 views

Online Voting System /ajax.ph File SQL Injection Vulnerability

Online Voting System is an online voting system. Online Voting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /ajax.php. An attacker can exploit this vulnerability to execute illega...

8.8CVSS8.2AI score0.00276EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.7 views

itsourcecode Online Voting System SQL注入漏洞

Online Voting System is an online voting system. Online Voting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /ajax.php. An attacker can exploit this vulnerability to execute illega...

8.8CVSS7AI score0.00276EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/11/16 12:0 a.m.7 views

itsourcecode Inventory Management System SQL注入漏洞

itsourcecode Inventory Management System is an inventory management system of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Inventory Management System version 1.0, which originates from a misuse of the parameter ID in file /index.php?q=single-item, which may lead...

9.8CVSS7.8AI score0.00346EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/11/14 12:0 a.m.6 views

CodeAstro Gym Management System SQL注入漏洞

Gym Management System is a gym management system from SourceCodester. A SQL injection vulnerability exists in version 1.0 of the Gym Management System, which stems from incorrect manipulation of the parameter ID in the file /admin/view-member-report.php, which could lead to a SQL injection attack...

8.8CVSS6.6AI score0.00281EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.5 views

SourceCodester Survey Application System SQL注入漏洞

SourceCodester Survey Application System is a SourceCodester open source survey application system. A SQL injection vulnerability exists in SourceCodester Survey Application System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /viewsurvey.php, which can lead...

9.8CVSS7.9AI score0.00431EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/03 1:2 a.m.2 views

CVE-2025-12609 CodeAstro Gym Management System update-progress.php sql injection

A vulnerability was found in CodeAstro Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/update-progress.php. Performing a manipulation of the argument id/iniweight results in sql injection. The attack may be initiated remotely. The exploit has bee...

5.8CVSS5AI score0.00332EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/11/03 12:0 a.m.5 views

itsourcecode Online Loan Management System SQL注入漏洞

itsourcecode Online Loan Management System is an online loan management system from itsourcecode open source. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Loan Management System, which stems from incorrect manipulation of the parameter ID in the file /manageuser.php,...

9.8CVSS7.7AI score0.00401EPSS
Exploits1References6
NVD
NVD
added 2025/10/29 10:15 a.m.9 views

CVE-2015-10147

The Easy Testimonial Slider and Form plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

4.9CVSS0.0027EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.6 views

Code-Projects Nero Social Networking Site SQL注入漏洞

Nero Social Networking Site is a social networking site. Nero Social Networking Site suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /addfriend.php. An attacker can exploit this vulnerability to...

9.8CVSS8.1AI score0.00431EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.6 views

RUET-OJ SQL注入漏洞

RUET-OJ is an online judge platform by the individual developer Ashadullah Shawon. RUET-OJ suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter ID in the file /description.php, which could lead to a SQL injection attack...

6.5CVSS6.9AI score0.00243EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-3614

Malware in sbrugna...

9.8CVSS9.5AI score0.02147EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.5 views

Code-Projects Simple Banking System SQL注入漏洞

Simple Banking System is a simple banking system. Simple Banking System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ID of the file /transfermoney.php. An attacker can exploit this vulnerability to execute...

8.8CVSS8.2AI score0.00306EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-26293

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00383EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-28459

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00955EPSS
Exploits1References1
CNVD
CNVD
added 2025/09/29 12:0 a.m.6 views

Hostel Management System mod_users/index.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modusers/index.php. An attacker can exploit this...

9.8CVSS8.3AI score0.00387EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/09/27 12:0 a.m.4 views

Projectworlds Online Shopping System SQL注入漏洞

Projectworlds Online Shopping System is an online shopping system from the Austrian company Projectworlds. A SQL injection vulnerability exists in Projectworlds Online Shopping System version 1.0, which stems from a misuse of the parameter ID in the file /store/cartadd.php, which could lead to a...

9.8CVSS7.8AI score0.00441EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/27 12:0 a.m.4 views

SourceCodester Pet Grooming Management Software SQL注入漏洞

SourceCodester Pet Grooming Management Software is a SourceCodester open source pet grooming management system. A SQL injection vulnerability exists in SourceCodester Pet Grooming Management Software version 1.0, which stems from incorrect manipulation of the parameter ID in the file...

9.8CVSS7.7AI score0.00441EPSS
Exploits1References6
CNVD
CNVD
added 2025/09/25 12:0 a.m.5 views

Hostel Management System mod_comments/index.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modcomments/index.php. An attacker can use this...

9.8CVSS8.3AI score0.00629EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/23 5:32 a.m.3 views

CVE-2025-10841 code-projects Online Bidding System weweee.php sql injection

A security vulnerability has been detected in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/weweee.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly...

7.5CVSS6.7AI score0.0055EPSS
Exploits1References5
Rows per page
Query Builder