CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-6538

Malware in sbrugna...

9.8CVSS9.5AI score0.00264EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 8:11 a.m.•4 views

CVE-2019-15569

HM Courts & Tribunals ccd-data-store-api before 2019-06-10 allows SQL injection, related to SearchQueryFactoryOperation.java and SortDirection.java...

9.8CVSS7.6AI score0.00264EPSS

Exploits0References1

Prion•added 2020/01/03 8:15 p.m.•13 views

Sql injection

The bindReplace function in the query factory in includes/classes/database.php in Loaded Commerce 7 does not properly handle : colon characters, which allows remote authenticated users to conduct SQL injection attacks via the First name and Last name fields in the address book...

6.5CVSS7.7AI score0.0105EPSS

Exploits6References5

CVE•added 2020/01/03 7:50 p.m.•164 views

CVE-2014-5140

CVE-2014-5140 affects Loaded Commerce 7. The vulnerability is in the bindReplace function of the query factory (includes/classes/database.php), which does not properly handle colon characters. This enables SQL injection via the First name and Last name fields in the address book when used by remo...

8.8CVSS8.6AI score0.0105EPSS

Exploits6References5Affected Software1

seebug.org•added 2014/09/18 12:0 a.m.•29 views

LoadedCommerce7 - Systemic Query Factory Vulnerability

No description provided by source. Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory: http://breaking.technology/advisories/CVE-2014-5140.txt Credits: Discovered by Breaking Technology Research Labs 2014-06-30 Reference: CVE-2014-5140 - Assigned 31 June 2014 Timeline: Vendor...

7.1CVSS8.7AI score0.0105EPSS

Exploits6

0day.today•added 2014/09/08 12:0 a.m.•40 views

LoadedCommerce7 - Systemic Query Factory Vulnerability

Loaded Commerce 7 shopping cart/online store suffers from a systemic vulnerability in its query factory, allowing attackers to circumvent user input sanitizing to perform remote SQL injection. Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory:...

7.1CVSS0.6AI score0.0105EPSS

Exploits6

Packet Storm•added 2014/09/08 12:0 a.m.•45 views

Loaded Commerce 7 Shopping Cart SQL Injection

Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory: http://breaking.technology/advisories/CVE-2014-5140.txt Credits: Discovered by Breaking Technology Research Labs 2014-06-30 Reference: CVE-2014-5140 - Assigned 31 June 2014 Timeline: Vendor notified - 29 July 2014 Vendor...

7.1CVSS0.0105EPSS

Exploits6

Exploit DB•added 2014/09/07 12:0 a.m.•37 views

LoadedCommerce7 - Systemic Query Factory

8.8CVSS7AI score0.0105EPSS

Exploits6

exploitpack•added 2014/09/07 12:0 a.m.•25 views

LoadedCommerce7 - Systemic Query Factory

LoadedCommerce7 - Systemic Query Factory Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory: http://breaking.technology/advisories/CVE-2014-5140.txt Credits: Discovered by Breaking Technology Research Labs 2014-06-30 Reference: CVE-2014-5140 - Assigned 31 June 2014 Timeline:...

6.5CVSS8.9AI score0.0105EPSS

Exploits6

0day.today•added 2014/08/14 12:0 a.m.•32 views

TomatoCart 1.x - SQL Injection Vulnerability

Exploit for php platform in category web applications Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability Background: TomatoCart is open source ecommerce solution developed and maintained by a number of 64,000+ users from 50+ countries and regions. It's distributed under the...

6.5CVSS6.5AI score0.00705EPSS

Exploits7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by