CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-7710

Malware in sbrugna...

8.8CVSS8.6AI score0.00296EPSS

Exploits0References2

Positive Technologies•added 2025/08/19 12:0 a.m.•3 views

PT-2025-33880 · Unknown · Solidinvoice

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A cross-site scripting issue exists in SolidInvoice. The vulnerability affects an unknown function within the /quotes file of the Quote Module. Manipulation of the Name argument can lead to...

5.4CVSS3.7AI score0.00072EPSS

Exploits1References10

RedhatCVE•added 2025/05/22 5:37 a.m.•1 views

CVE-2019-17297

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Quotes module by a Regular user...

8.8CVSS8AI score0.00296EPSS

Exploits0References1

OSV•added 2021/04/22 10:15 p.m.•0 views

CVE-2021-2210

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: Quotes. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Trade...

8.2CVSS6.8AI score0.01691EPSS

Exploits0References1

CNNVD•added 2021/04/20 12:0 a.m.•1 views

Oracle E-Business Suite Oracle Trade Management Quotes 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is seamlessly integrated with a management suite.Oracle Trade...

8.2CVSS5.6AI score0.01691EPSS

Exploits0References2

CNVD•added 2019/10/08 12:0 a.m.•1 views

SugarCRM Quotes Module SQL Injection Vulnerability

SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the Quotes module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit this vulnerability to inject custom PHP code...

8.8CVSS8AI score0.00296EPSS

Exploits0References1

NVD•added 2019/10/07 4:15 p.m.•9 views

CVE-2019-17297

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Quotes module by a Regular user...

8.8CVSS9.1AI score0.00296EPSS

Exploits0References1

OSV•added 2019/10/07 4:15 p.m.•1 views

CVE-2019-17297

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Quotes module by a Regular user...

8.8CVSS7.3AI score0.00296EPSS

Exploits0References1

Prion•added 2019/10/07 4:15 p.m.•12 views

Sql injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Quotes module by a Regular user...

6.5CVSS9AI score0.00296EPSS

Exploits0References1Affected Software1

CVE•added 2019/10/07 3:5 p.m.•36 views

CVE-2019-17297

CVE-2019-17297 affects SugarCRM before 8.0.4 and 9.x before 9.0.2, where a Regular user can trigger SQL injection in the Quotes module. The root cause across connected sources is inadequate input validation leading to SQL injection, with multiple references confirming the Quotes module as the vul...

8.8CVSS9AI score0.00296EPSS

Exploits0References1Affected Software1