Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
šŸ”„ Daily Hot!
šŸ’ŖšŸ½ CPE Enhanced Advisories
šŸ•¶ Shadow Exploits
šŸ•µšŸ¼ Vulners CPE
šŸ” Security news
šŸ’» Exploit updates
šŸ“‘ Blogs review
šŸ§ Linux vulnerabilities
šŸž Bugbounty
šŸ¤– AI High Score
šŸ“° CVE Feed
show all

3969 matches found

OSV
OSVā€¢added 2024/04/07 11:15 a.m.ā€¢3 views

CVE-2024-3420

A vulnerability was found in SourceCodester Online Courseware 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/saveedit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been...

9.8CVSS5.7AI score0.00756EPSS
Exploits1References4
OSV
OSVā€¢added 2024/04/05 6:15 p.m.ā€¢3 views

CVE-2024-3351

A vulnerability, which was classified as critical, was found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. This affects an unknown part of the file admin/modroomtype/index.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

9.8CVSS5.7AI score
Exploits0References4
OSV
OSVā€¢added 2024/04/03 1:16 p.m.ā€¢3 views

CVE-2024-3256

A vulnerability has been found in SourceCodester Internship Portal Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/editactivity.php. The manipulation of the argument activityid leads to sql injection. The attack can be...

7.2CVSS5.7AI score0.00706EPSS
Exploits1References4
OSV
OSVā€¢added 2024/04/03 2:15 a.m.ā€¢1 views

CVE-2024-3224

A vulnerability has been found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack can be launched remotely...

8.8CVSS5.7AI score0.00712EPSS
Exploits1References4
OSV
OSVā€¢added 2024/04/02 2:15 a.m.ā€¢2 views

CVE-2024-3148

A vulnerability, which was classified as critical, has been found in DedeCMS 5.7.112. This issue affects some unknown processing of the file dede/makehtmlarchivesaction.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public...

8.8CVSS5.6AI score0.0064EPSS
Exploits0References4
OSV
OSVā€¢added 2024/04/01 5:16 p.m.ā€¢2 views

CVE-2024-3131

A vulnerability was found in SourceCodester Computer Laboratory Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /classes/Master.php?f=savecategory. The manipulation of the argument id leads to sql injection. The attack can be initiated...

6.5CVSS5.8AI score0.00525EPSS
Exploits1References4
NVD
NVDā€¢added 2024/03/27 3:15 a.m.ā€¢65 views

CVE-2024-2945

A vulnerability was found in Campcodes Online Examination System 1.0. It has been classified as critical. Affected is an unknown function of the file /adminpanel/admin/faceboxmodal/updateExaminee.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

6.5CVSS6.8AI score0.00512EPSS
Exploits1References4
CVE
CVEā€¢added 2024/03/27 2:31 a.m.ā€¢59 views

CVE-2024-2944

CVE-2024-2944 concerns Campcodes Online Examination System 1.0. The vulnerability is an SQL injection in the /adminpanel/admin/query/deleteCourseExe.php file, triggered by manipulating the id parameter. The issue originates from the handling of the id input, allowing remote attackers to craft req...

6.5CVSS6.8AI score0.0055EPSS
Exploits1References4Affected Software1
OSV
OSVā€¢added 2024/03/26 11:15 p.m.ā€¢1 views

CVE-2024-2916

A vulnerability was found in Campcodes House Rental Management System 1.0. It has been classified as critical. Affected is an unknown function of the file ajax.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS5.8AI score0.00645EPSS
Exploits1References4
OSV
OSVā€¢added 2024/03/21 2:52 a.m.ā€¢1 views

CVE-2024-2713

A vulnerability, which was classified as critical, was found in Campcodes Complete Online DJ Booking System 1.0. Affected is an unknown function of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack remotely...

6.5CVSS5.7AI score0.00601EPSS
Exploits1References3
OSV
OSVā€¢added 2024/03/20 10:15 a.m.ā€¢3 views

CVE-2024-2687

A vulnerability was found in Campcodes Online Job Finder System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/applicants/index.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has bee...

6.5CVSS5.7AI score0.00582EPSS
Exploits1References3
OSV
OSVā€¢added 2024/03/20 7:15 a.m.ā€¢2 views

CVE-2024-2677

A vulnerability has been found in Campcodes Online Job Finder System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/category/controller.php. The manipulation of the argument CATEGORYID leads to sql injection. The attack can be launche...

6.5CVSS6.5AI score0.00496EPSS
Exploits1References3
OSV
OSVā€¢added 2024/03/18 2:15 p.m.ā€¢4 views

CVE-2024-2590

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/mail/main/selectsend.php, in the 'sdindex' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB...

7.5CVSS5.9AI score0.00523EPSS
Exploits0References1
BDU FSTEC
BDU FSTECā€¢added 2024/03/14 12:0 a.m.ā€¢4 views

The vulnerability of the ia.core.mysqli.php component of the Intelliants Subrion CMS system allows a hacker to execute arbitrary SQL queries.

The vulnerability of the ia.core.mysqli.php component of the Intelliants Subrion CMS system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

7.5CVSS5.9AI score0.00654EPSS
Exploits1References5Affected Software1
OSV
OSVā€¢added 2024/03/09 9:15 a.m.ā€¢2 views

CVE-2024-2330

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/index.php. The manipulation of the argument IPAddr leads to sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS5.7AI score
Exploits0References3
OSV
OSVā€¢added 2024/03/08 2:15 a.m.ā€¢5 views

CVE-2024-2282

A vulnerability was found in boyiddha Automated-Mess-Management-System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /index.php of the component Login Page. The manipulation of the argument useremail leads to sql injection. The attack may be initiated...

9.8CVSS5.7AI score0.00675EPSS
Exploits0References3
OSV
OSVā€¢added 2024/02/26 4:27 p.m.ā€¢2 views

CVE-2024-1877

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /cancel.php. The manipulation of the argument id with the input 1%20or%201=1 leads to sql injection. The attack can ...

8.8CVSS5.7AI score0.00628EPSS
Exploits0References3
OSV
OSVā€¢added 2024/01/29 4:15 p.m.ā€¢1 views

CVE-2024-1007

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editprofile.php. The manipulation of the argument txtfullname leads to sql injection. It is possible to launch the attack remotely. The explo...

7.2CVSS5.7AI score0.00589EPSS
Exploits1References3
OSV
OSVā€¢added 2024/01/19 9:15 p.m.ā€¢2 views

CVE-2024-0734

A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the...

9.8CVSS5.7AI score0.005EPSS
Exploits0References3
OSV
OSVā€¢added 2024/01/13 6:15 p.m.ā€¢3 views

CVE-2024-0498

A vulnerability was found in Project Worlds Lawyer Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file searchLawyer.php. The manipulation of the argument experience leads to sql injection. The attack can be launched...

9.8CVSS5.8AI score
Exploits0References3
Rows per page
Query Builder