CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

199 matches found

Cvelist•added 2024/04/04 12:0 a.m.•15 views

CVE-2024-29387

projeqtor up to 11.2.0 was discovered to contain a remote code execution RCE vulnerability via the component /view/print.php...

8.2AI score0.03273EPSS

Exploits1References1

Prion•added 2024/02/09 2:15 p.m.•59 views

Sql injection

Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2...

6.8CVSS8.8AI score0.00157EPSS

Exploits1References1Affected Software1

Cvelist•added 2024/01/12 3:31 p.m.•15 views

CVE-2024-0460 code-projects Faculty Management System student-print.php sql injection

A vulnerability was found in code-projects Faculty Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/pages/student-print.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed...

6.5CVSS10AI score0.00056EPSS

Exploits0References3

Prion•added 2023/06/23 8:15 p.m.•20 views

Cross site scripting

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the nmmember parameter at print.php...

5.8CVSS6AI score0.09444EPSS

Exploits4References3Affected Software1

CVE•added 2023/06/23 12:0 a.m.•49 views

CVE-2023-36346

POS Codekop v2.0 has a reflected XSS vulnerability in the print.php endpoint through the nm_member parameter. Affects the web application’s print.php handling, enabling injection of script code that could be executed in users’ browsers. The Nuclei template and Red Hat/NVD references confirm the i...

6.1CVSS6AI score0.09444EPSS

Exploits4References3Affected Software1

Cvelist•added 2023/06/23 12:0 a.m.•12 views

CVE-2023-36346

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the nmmember parameter at print.php...

6.2AI score0.09444EPSS

Exploits4References3

Vulnrichment•added 2023/06/23 12:0 a.m.•6 views

CVE-2023-36346

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the nmmember parameter at print.php...

6.1AI score0.09444EPSS

Exploits4References3

Prion•added 2023/02/07 11:15 p.m.•10 views

Cross site scripting

Cross site scripting XSS vulnerability in sourcecodester oretnom23 sales management system 1.0, allows attackers to execute arbitrary code via the productname and productprice inputs in file print.php...

5.8CVSS6.3AI score0.00392EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/02/07 12:0 a.m.•11 views

CVE-2023-23026

6.3AI score0.00392EPSS

Exploits1References1

Huntr•added 2023/01/16 1:14 p.m.•18 views

Reflected XSS on msg Parameter

Description Hello Team, Hope you're doing well, There is no sanitization for the user input in msg parameter on the print.php file. Proof of Concept for some reason, I don't know why I can't prove the vulnerability on demo.bumsys.org but here is the PoC payload is:...

0.9AI score

Exploits0

NVD•added 2022/11/01 7:15 p.m.•7 views

CVE-2022-43329

Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php...

7.2CVSS0.00274EPSS

Exploits0References1

Prion•added 2022/11/01 7:15 p.m.•12 views

Sql injection

Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php...

5.8CVSS7.2AI score0.00274EPSS

Exploits0References1Affected Software1

CVE•added 2022/11/01 12:0 a.m.•52 views

CVE-2022-43329

CVE-2022-43329 corresponds to a SQL injection in Canteen Management System v1.0, exploitable via the id parameter on /print.php. The vulnerability affects confidentiality, integrity, and availability (CVSS v3.1 base score 7.2; AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H). The connected data confirms the ...

7.2CVSS7.2AI score0.00274EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/11/01 12:0 a.m.•9 views

CVE-2022-43329

Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php...

7.5AI score0.00274EPSS

Exploits0References1

Vulnrichment•added 2022/11/01 12:0 a.m.•4 views

CVE-2022-43329

Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php...

8.5AI score0.00274EPSS

Exploits0References1

CNVD•added 2022/09/06 12:0 a.m.•23 views

Garage Management System SQL Injection Vulnerability (CNVD-2022-62232)

Garage Management System Cms-Website is a garage management system. A SQL injection vulnerability exists in Garage Management System v1.0, which stems from a lack of validation of externally entered SQL statements in the id parameter of /print.php. An attacker could use this vulnerability to...

8.8CVSS3.2AI score0.00325EPSS

Exploits1References1

Prion•added 2022/09/02 9:15 p.m.•13 views

Design/Logic Flaw

An access control issue in the component print.php of Garage Management System v1.0 allows unauthenticated attackers to access data for all existing orders...

5CVSS5.4AI score0.00505EPSS

Exploits1References2Affected Software1

CVE•added 2022/09/02 8:32 p.m.•61 views

CVE-2022-36638

CVE-2022-36638 affects Garage Management System v1.0, specifically the print.php component. The underlying issue is an access control flaw that allows unauthenticated attackers to read data for all existing orders. This is confirmed across multiple sources in the connected documents, which consis...

5.3CVSS5.3AI score0.00505EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/09/02 8:32 p.m.•12 views

CVE-2022-36638

An access control issue in the component print.php of Garage Management System v1.0 allows unauthenticated attackers to access data for all existing orders...

5.7AI score0.00505EPSS

Exploits1References2