Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2026/03/25 12:32 a.m.1 views

CVE-2026-4783 itsourcecode College Management System Parameter add-single-student-results.php sql injection

A vulnerability has been found in itsourcecode College Management System 1.0. The impacted element is an unknown function of the file /admin/add-single-student-results.php of the component Parameter Handler. The manipulation of the argument coursecode leads to sql injection. It is possible to...

6.5CVSS6.4AI score0.00042EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/03/10 2:8 p.m.1 views

CVE-2025-40638

A reflected Cross-Site Scripting XSS vulnerability has been found in Eventobot. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL using the 'name' parameter in '/search-results'. This vulnerability can be exploited to steal...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:51 a.m.10 views

CVE-2020-10131

SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...

9.8CVSS7.1AI score0.0992EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/11/17 12:0 a.m.0 views

PHPGurukul Online Shopping Portal 安全漏洞

Online Shopping Portal is an online store system. Online Shopping Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the product parameter of search-result.php. An attacker can exploit this vulnerability to execute...

6.5CVSS8.2AI score0.00037EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-2594

Malware in sbrugna...

9.8CVSS9.2AI score0.0992EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/12/21 12:0 a.m.1 views

Projectworlds Student Result Management System SQL Injection Vulnerability

Projectworlds Student Result Management System is a student result management system from Projectworlds India. A SQL injection vulnerability exists in Projectworlds Student Result Management System v1.0, which stems from the "classname" parameter of addresults.php not validating the received...

9.8CVSS7.9AI score0.00153EPSS
Exploits1References3
Prion
Prionadded 2023/09/06 7:15 p.m.14 views

Design/Logic Flaw

SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...

7.5CVSS9.4AI score0.0992EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2019/12/02 5:15 p.m.3 views

CVE-2019-19016

An issue was discovered in TitanHQ WebTitan before 5.18. Some functions, such as /history-x.php, of the administration interface are vulnerable to SQL Injection through the results parameter. This could be used by an attacker to extract sensitive information from the appliance database...

7.5CVSS5.9AI score0.0035EPSS
Exploits1References5
OSV
OSVadded 2019/06/06 4:29 p.m.1 views

CVE-2019-7554

An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...

6.1CVSS6.3AI score0.00266EPSS
Exploits1References2
Rows per page
Query Builder