Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

7 matches found

OSV
OSVโ€ขadded 2026/02/20 5:25 p.m.โ€ข2 views

CVE-2025-70833

An Authentication Bypass vulnerability in Smanga 3.2.7 allows an unauthenticated attacker to reset the password of any user including the administrator and fully takeover the account by manipulating POST parameters. The issue stems from insecure permission validation in check-power.php...

9.4CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichmentโ€ขadded 2025/06/04 10:0 a.m.โ€ข9 views

CVE-2025-5584 PHPGurukul Hospital Management System POST Parameter edit-patient.php cross site scripting

A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been classified as problematic. Affected is an unknown function of the file /doctor/edit-patient.php?editid=2 of the component POST Parameter Handler. The manipulation of the argument patname leads to cross site...

4.8CVSS6.5AI score0.00152EPSS
Exploits1References5
Positive Technologies
Positive Technologiesโ€ขadded 2025/01/13 12:0 a.m.โ€ข4 views

PT-2025-1474 ยท Selesta ยท Selesta Visual Access Manager

Name of the Vulnerable Software and Affected Versions: Selesta Visual Access Manager VAM versions prior to 4.42.2 Description: An issue was discovered in Selesta Visual Access Manager VAM where an authenticated attacker can write arbitrary files by manipulating POST parameters of the page...

6.5CVSS6.8AI score0.00195EPSS
Exploits0References5
NVD
NVDโ€ขadded 2024/11/13 9:15 p.m.โ€ข13 views

CVE-2024-45876

The login form of baltic-it TOPqw Webportal v1.35.283.2 fixed in version 1.35.283.4 at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsername, which allows for manipulation of SQL queries...

6.5CVSS0.00122EPSS
Exploits0References1
Vulnrichment
Vulnrichmentโ€ขadded 2024/11/13 12:0 a.m.โ€ข16 views

CVE-2024-45876

The login form of baltic-it TOPqw Webportal v1.35.283.2 fixed in version 1.35.283.4 at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsername, which allows for manipulation of SQL queries...

7.8AI score0.00122EPSS
Exploits0References1
NVD
NVDโ€ขadded 2022/09/06 8:15 p.m.โ€ข9 views

CVE-2022-37253

Persistent cross-site scripting XSS in Crime Reporting System 1.0 allows a remote attacker to introduce arbitary Javascript via manipulation of an unsanitized POST parameter...

5.4CVSS0.00173EPSS
Exploits0References2
Exploit DB
Exploit DBโ€ขadded 2017/03/03 12:0 a.m.โ€ข41 views

EPSON TMNet WebConfig 1.00 - Cross-Site Scripting

Exploit Title: Persistent XSS in EPSON TMNet WebConfig Ver. 1.00 Google Dork: intitle:"EPSON TMNet WebConfig Ver.1.00" Date: 3/3/2017 Exploit Author: Michael Benich Vendor Homepage: https://www.epson-biz.com/ Software Link: https://c4b.epson-biz.com/modules/community/index.php?contentid=50 Versio...

6.1CVSS7AI score0.0201EPSS
Exploits5
Rows per page
Query Builder