CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

CNNVD•added 2026/05/08 12:0 a.m.•3 views

SOPlanning SQL注入漏洞

SOPlanning is a set of online project management software developed by SOPlanning Company. Version 1.52.00 of SOPlanning contains an SQL injection vulnerability. This vulnerability stems from the SQL injection in the projects.php file, and it could be exploited by authenticated users...

6.3CVSS5.8AI score0.00038EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2010-1763

Malware in sbrugna...

7.5CVSS6.4AI score0.01135EPSS

Exploits1References7

RedhatCVE•added 2025/05/22 6:31 a.m.•5 views

CVE-2014-8673

Multiple SQL vulnerabilities exist in planning.php, userlist.php, projets.php, usergroupes.php, and groupelist.php in Simple Online Planning SOPPlanningbefore 1.33...

9.8CVSS7.7AI score0.49864EPSS

Exploits5References1

0day.today•added 2024/05/03 12:0 a.m.•206 views

SOPlanning 1.52.00 SQL Injection Vulnerability

Exploit Title: SOPlanning v1.52.00 'projets.php' SQLi Application: SOPlanning Version: 1.52.00 Exploit Author: Joseph McPeters Liquidsky Vendor Homepage: https://www.soplanning.org/en/ Software Link: https://sourceforge.net/projects/soplanning/ Tested on: Linux CVE: Not yet assigned Description:...

7.4AI score

Exploits0

OSV•added 2024/02/14 3:15 p.m.•2 views

CVE-2024-25218

A cross-site scripting XSS vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Project Name parameter /TaskManager/Projects.php...

6.1CVSS5.9AI score0.00142EPSS

Exploits1References1

Cvelist•added 2024/02/14 12:0 a.m.•14 views

CVE-2024-25218

6AI score0.00142EPSS

Exploits1References1

Openbugbounty•added 2017/06/20 2:38 p.m.•8 views

anandaguru.com XSS vulnerability

Vulnerable URL: http://www.anandaguru.com/projects.php?propertystatus=1/-///'/"//--...

6.9AI score

Exploits0

Openbugbounty•added 2016/10/29 9:57 a.m.•9 views

chaosfactory.tv XSS vulnerability

Vulnerable URL: http://chaosfactory.tv/TCF-Projects.php?name= Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check chaosfactory.tv SSL connection:| Grade: F...

6.3AI score

Exploits0

Openbugbounty•added 2016/08/01 12:22 p.m.•7 views

popmuseum.cz XSS vulnerability

Vulnerable URL: http://www.popmuseum.cz/projects/projects.php?q=' Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 24837507 VIP website status:| No Check popmuseum.cz SSL connection:...

6.2AI score

Exploits0

exploitpack•added 2012/08/10 12:0 a.m.•15 views

mIRC - projects.php Cross-Site Scripting

mIRC - projects.php Cross-Site Scripting source: https://www.securityfocus.com/bid/54989/info mIRC is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

6.8AI score

Exploits0

Exploit DB•added 2012/08/10 12:0 a.m.•20 views

mIRC - 'projects.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/54989/info mIRC is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score

Exploits0

Packet Storm•added 2011/07/08 12:0 a.m.•18 views

phpFolio Script SQL Injection

phpFolio script projects.php SQL Injection Vulnerability Author : CoBRa21 Dork : "Powered By phpFolio" Script Name : phpFolio Script Page : http://phpfolio.com/ close Thanks : E-Banka.Org & Cyber-Warrior.Org & Ordu-yu Lojistik TIM Exploit http://localhost/ PATH /projects.php?id=21458'...

0.6AI score

Exploits0

NVD•added 2010/05/06 6:30 p.m.•10 views

CVE-2010-1743

SQL injection vulnerability in projects.php in Scratcher allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01135EPSS

Exploits1References6

Prion•added 2010/05/06 6:30 p.m.•7 views

Sql injection

SQL injection vulnerability in projects.php in Scratcher allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.01135EPSS

Exploits1References6

NVD•added 2010/05/06 6:30 p.m.•8 views

CVE-2010-1742

Cross-site scripting XSS vulnerability in projects.php in Scratcher allows remote attackers to inject arbitrary web script or HTML via the show parameter...

4.3CVSS5.7AI score0.04088EPSS

Exploits1References6

Prion•added 2010/05/06 6:30 p.m.•7 views

Cross site scripting

Cross-site scripting XSS vulnerability in projects.php in Scratcher allows remote attackers to inject arbitrary web script or HTML via the show parameter...

4.3CVSS6.1AI score0.04088EPSS

Exploits1References6

CVE•added 2010/05/06 6:0 p.m.•38 views

CVE-2010-1742

CVE-2010-1742 describes a cross-site scripting (XSS) vulnerability in the Scratcher application, specifically in the contents rendered from projects.php via the show parameter. The underlying issue is that user-supplied input in show is not sanitized, enabling remote attackers to inject arbitrary...

4.3CVSS5.9AI score0.04088EPSS

Exploits1References6Affected Software1

CVE•added 2010/05/06 6:0 p.m.•34 views

CVE-2010-1743

CVE-2010-1743 describes an SQL injection in Scratcher's projects.php, exploitable via the id parameter to remotely execute arbitrary SQL commands. The vulnerability affects the application as described and has a CVSSv2 base score of 7.5 (HIGH). Public references cite multiple advisories and an ex...

7.5CVSS8.7AI score0.01135EPSS

Exploits1References6Affected Software1

Cvelist•added 2010/05/06 6:0 p.m.•13 views

CVE-2010-1742

Cross-site scripting XSS vulnerability in projects.php in Scratcher allows remote attackers to inject arbitrary web script or HTML via the show parameter...

5.7AI score0.04088EPSS

Exploits1References6

Cvelist•added 2010/05/06 6:0 p.m.•14 views

CVE-2010-1743

SQL injection vulnerability in projects.php in Scratcher allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.01135EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by