CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Bylancer Quicklancer 2.4 G - SQL Injection

A SQL injection vulnerability exists in the Quicklancer 2.4, GET parameter 'range2', that has time-based blind SQL injection and a boolean-based blind SQL injection, which can be exploited remotely by unauthenticated attacker to execute arbitrary SQL queries in the database. id: CVE-2024-7188 inf...

9.8CVSS7.4AI score0.07016EPSS

Exploits1References4

RedhatCVE•added 2025/02/05 11:34 a.m.•17 views

CVE-2024-7188

A vulnerability was found in Bylancer Quicklancer 2.4. It has been rated as critical. This issue affects some unknown processing of the file /listing of the component GET Parameter Handler. The manipulation of the argument range2 leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS7.1AI score0.07016EPSS

Exploits1References1

OSV•added 2024/07/29 7:15 a.m.•2 views

CVE-2024-7188

9.8CVSS6.8AI score0.07016EPSS

Exploits1References4

Vulnrichment•added 2024/07/29 7:0 a.m.•14 views

CVE-2024-7188 Bylancer Quicklancer GET Parameter listing sql injection

7.5CVSS7.4AI score0.07016EPSS

Exploits1References4

CVE•added 2024/07/29 7:0 a.m.•73 views

CVE-2024-7188

Bylancer Quicklancer 2.4 is affected by a SQL injection in the GET parameter range2 of the GET Parameter Handler. The nuclei template for CVE-2024-7188 describes time-based blind and boolean-based blind SQL injection that can be exploited remotely by unauthenticated attackers to execute arbitrary...

9.8CVSS7.2AI score0.07016EPSS

Exploits1References4Affected Software1

Positive Technologies•added 2024/07/29 12:0 a.m.•4 views

PT-2024-38150 · Unknown · Bylancer Quicklancer

Name of the Vulnerable Software and Affected Versions: Bylancer Quicklancer version 2.4 Description: A critical issue affects the processing of the file/listing of the component GET Parameter Handler. The manipulation of the range2 argument leads to SQL injection. The attack may be initiated...

9.8CVSS7.9AI score0.07016EPSS

Exploits1References7

CNNVD•added 2024/07/29 12:0 a.m.•3 views

Bylancer Quicklancer SQL注入漏洞

Bylancer Quicklancer is a freelance platform from Bylancer, Inc. A SQL injection vulnerability exists in Bylancer Quicklancer version 2.4, which stems from the parameter range2 of the component GET Parameter Handler can lead to SQL injection...

9.8CVSS7.9AI score0.07016EPSS

Exploits1References5

Packet Storm•added 2023/06/16 12:0 a.m.•308 views

Quicklancer Freelance Marketplace 2.4 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

7.1AI score

Exploits0

Exploit DB•added 2023/05/23 12:0 a.m.•210 views

Quicklancer v1.0 - SQL Injection

Exploit Title: Quicklancer v1.0 - SQL Injection Date: 2023-05-17 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/quicklancer-freelance-marketplace-php-script/39087135 Demo Site: https://quicklancer.bylancer.com Tested on: Kali Linux CVE: N/A Request POST /php/user-ajax.php...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by