CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD-2018-21929

eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. Attackers can inject SQL through the artid, cid, did, contid, and aboutid parameters across...

8.8CVSS6.2AI score0.00068EPSS

Exploits0References4

EUVD•added 5 days ago•5 views

EUVD-2018-21927

8.8CVSS6.1AI score0.00068EPSS

Exploits0References4

Positive Technologies•added 5 days ago•6 views

PT-2026-45105

8.8CVSS6.1AI score0.00068EPSS

Exploits0References5

RedhatCVE•added 2026/01/07 9:28 a.m.•2 views

CVE-2019-12190

XSS was discovered in CentOS-WebPanel.com aka CWP CentOS Web Panel through 0.9.8.747 via the testacc/fileManager2.php fmcurrentdir or filename parameter...

5.4CVSS6.1AI score0.00206EPSS

Exploits1References1

RedhatCVE•added 2025/11/21 12:18 a.m.•4 views

CVE-2025-60799

phpPgAdmin 7.13.0 and earlier contains an incorrect access control vulnerability in sql.php at lines 68-76. The application allows unauthorized manipulation of session variables by accepting user-controlled parameters 'subject', 'server', 'database', 'queryid' without proper validation or access...

6.1CVSS7.1AI score0.00011EPSS

Exploits0References1

CVE•added 2025/11/20 12:0 a.m.•6 views

CVE-2025-60799

The CVE-2025-60799 issue affects phpPgAdmin

6.1CVSS6.7AI score0.00011EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/11/05 12:0 a.m.•1 views

CVE-2025-55343

Quipux 4.0.1 through e1774ac allows authenticated users to conduct SQL injection attacks via busqueda/busqueda.php txtdepecodi, busqueda/busqueda.php txtusuacodi, anexoslista.php raditemp, Administracion/listas/formAreaajax.php codDepe, Administracion/listas/formDepeHijoajax.php codDepe,...

7.3AI score0.0004EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-2760

Malware in sbrugna...

6.4CVSS6.4AI score0.09051EPSS

Exploits0References16

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-8747

Malware in sbrugna...

9.8CVSS9.4AI score0.02377EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-4513

Malware in sbrugna...

7.5CVSS6.1AI score0.01798EPSS

Exploits1References12

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-13388

Malware in sbrugna...

8.8CVSS8.8AI score0.00139EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-10516

Malware in sbrugna...

9.8CVSS9.4AI score0.02643EPSS

Exploits5References4

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-42645

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00068EPSS

Exploits1References3

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2013-5321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management OSSIM 4.1 allow remote attackers to execute arbitrary SQL...

7.5CVSS6.4AI score0.00776EPSS

Exploits1References2

Positive Technologies•added 2025/08/07 12:0 a.m.•2 views

PT-2025-32298 · Unknown · Hospital Management System

Name of the Vulnerable Software and Affected Versions: Hospital Management System version 4 Description: The Hospital Management System contains multiple cross-site scripting XSS vulnerabilities in the func2.php file. These vulnerabilities are triggered through the fname and lname parameters...

6.1CVSS6AI score0.00167EPSS

Exploits0References7

Positive Technologies•added 2025/08/07 12:0 a.m.•2 views

PT-2025-32300 · Unknown · Hospital Management System

Name of the Vulnerable Software and Affected Versions: Hospital Management System version 4 Description: The Hospital Management System contains multiple SQL injection vulnerabilities in the func3.php file. These vulnerabilities are present through the username1 and password2 parameters...

8.8CVSS7.6AI score0.00179EPSS

Exploits0References7

RedhatCVE•added 2025/05/23 2:21 a.m.•2 views

CVE-2023-38878

A reflected cross-site scripting XSS vulnerability in DevCode OpenSTAManager versions 2.4.24 to 2.4.47 may allow a remote attacker to execute arbitrary JavaScript in the web browser of a victim by injecting a malicious payload into the 'error' and 'errordescription' parameters of 'oauth2.php'...

6.1CVSS6AI score0.00068EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 1:32 p.m.•6 views

CVE-2014-8941

Lexiglot through 2014-11-20 allows SQL injection via an admin.php?page=usersid= or admin.php?page=history= URI...

9.8CVSS8.1AI score0.00264EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:17 a.m.•5 views

CVE-2019-19491

TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in a lib/testcases/tcEdit.php?doAction=doDeleteStep request...

6.1CVSS5.8AI score0.00328EPSS

Exploits1References1

OSV•added 2022/11/22 1:15 a.m.•0 views

UBUNTU-CVE-2022-36180

Fusiondirectory 1.3 is vulnerable to Cross Site Scripting XSS via /fusiondirectory/index.php?message=injection, /fusiondirectory/index.php?message=invalidparameter&plug=Injection, /fusiondirectory/index.php?signout=1&message=injection&plug=106...

9.6CVSS5.8AI score0.00191EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by