CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

542 matches found

CNNVD•added 2026/05/08 12:0 a.m.•4 views

emlog 跨站请求伪造漏洞

Emlog is an open-source CMS website building system based on PHP and MySQL. Versions of Emlog prior to 2.6.11 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from the lack of CSRF protection in critical management functions, which could allow attackers to trick...

8.4CVSS5.8AI score0.00025EPSS

Exploits0References2

RedhatCVE•added 2026/04/14 7:23 p.m.•2 views

CVE-2026-29861

PHP-MYSQL-User-Login-System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at login.php...

9.8CVSS5.9AI score0.00044EPSS

Exploits0References1

Vulnrichment•added 2026/04/10 12:0 a.m.•2 views

CVE-2026-29861

PHP-MYSQL-User-Login-System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at login.php...

5.9AI score0.00044EPSS

Exploits0References1

Vulnrichment•added 2025/11/03 12:0 a.m.•3 views

CVE-2025-63442

Simple User Management System with PHP-MySQL v1.0 is vulnerable to Cross-Site Scripting XSS via the Profile Section. The system fails to properly sanitize user input, allowing attackers to inject and execute arbitrary JavaScript when the input is displayed in the browser...

5.9AI score0.00028EPSS

Exploits1References1

Positive Technologies•added 2025/11/03 12:0 a.m.•4 views

PT-2025-44771

Name of the Vulnerable Software and Affected Versions Simple User Management System with PHP-MySQL version 1.0 Description The Simple User Management System with PHP-MySQL fails to properly sanitize user input in the Profile Section, allowing attackers to inject and execute arbitrary JavaScript...

4.6CVSS5.9AI score0.00028EPSS

Exploits1References3

EUVD•added 2025/10/27 3:30 a.m.•4 views

EUVD-2025-36057

A security flaw has been discovered in ajayrandhawa User-Management-PHP-MYSQL web up to fedcf58797bf2791591606f7b61fdad99ad8bff1. This vulnerability affects unknown code. Performing manipulation results in cross-site request forgery. The attack can be initiated remotely. The exploit has been...

5.3CVSS6AI score0.0004EPSS

Exploits1References5

Cvelist•added 2025/10/27 1:32 a.m.•9 views

CVE-2025-12202 ajayrandhawa User-Management-PHP-MYSQL web cross-site request forgery

5.3CVSS0.0004EPSS

Exploits1References4

CNNVD•added 2025/10/27 12:0 a.m.•4 views

User-Management-PHP-MYSQL 安全漏洞

User-Management-PHP-MYSQL is a secure user management system by Ajay Randhawa Individual Developer. A security vulnerability exists in User-Management-PHP-MYSQL that stems from mishandling of unknown code and could lead to cross-site request forgery attacks...

5.3CVSS5AI score0.0004EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-18537

Malware in sbrugna...

9.8CVSS9.2AI score0.00251EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-6478

Malware in sbrugna...

5CVSS6.4AI score0.00351EPSS

Exploits0References6