Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2025/05/09 5:15 p.m.2 views

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...

9.8CVSS6AI score0.00241EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/05/09 12:0 a.m.2 views

PT-2025-20582

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description The software is susceptible to a SQL Injection issue within the user payment update.php file. The issue occurs through the order id POST parameter. The vulnerability allo...

9.8CVSS7.5AI score0.00241EPSS
Exploits0References9
CNNVD
CNNVDadded 2025/05/09 12:0 a.m.1 views

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

9.8CVSS7.8AI score0.00241EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/05/09 12:0 a.m.9 views

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...

7.6AI score0.00241EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/05/09 12:0 a.m.2 views

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from a misbehavior of the parameter uploadedfilecancelled in...

9.8CVSS6.9AI score0.00604EPSS
Exploits0References3
CVE
CVEadded 2025/03/20 5:22 a.m.56 views

CVE-2025-1766

CVE-2025-1766 affects the WordPress plugin Eventin (Event Manager/Events Calendar/Tickets/Registrations) up to version 4.0.24. Root cause: missing capability check in the payment_complete function allows unauthenticated modification of data, enabling an attacker to set ticket payments to 'complet...

5.3CVSS5.3AI score0.00347EPSS
Exploits0References3Affected Software1
wpexploit
wpexploitadded 2021/04/12 12:0 a.m.108 views

Business Directory Plugin < 5.11.2 - Arbitrary Payment History Update

The plugin suffered from a Cross-Site Request Forgery issue, allowing an attacker to make a logged in administrator update arbitrary payment history, such as change their status from pending to completed to example Add a listing, don't complete payment status will be pending paymentcreatedatdate...

4.3CVSS0.6AI score0.00142EPSS
Exploits2
Cisco Threats
Cisco Threatsadded 2014/01/27 6:13 p.m.12 views

Threat Outbreak Alert: Fake Payment Update Request Email Messages on January 27, 2014

Medium Alert ID: 32578 First Published: 2014 January 27 18:13 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment update request for the recipient. The text in the email message attempts to convince the recipient t...

0.1AI score
Exploits0
Rows per page
Query Builder