Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2025/08/12 3:15 a.m.2 views

CVE-2025-42945

SAP NetWeaver Application Server ABAP has HTML injection vulnerability. Due to this, an attacker could craft a URL with malicious script as payload and trick a victim with active user session into executing it. Upon successful exploit, this vulnerability could lead to limited access to data or it...

6.1CVSS0.00046EPSS
Exploits0References2
OSV
OSVadded 2024/07/09 4:15 a.m.1 views

CVE-2024-37173

Due to insufficient input validation, SAP CRM WebClient UI allows an unauthenticated attacker to craft a URL link which embeds a malicious script. When a victim clicks on this link, the script will be executed in the victim's browser giving the attacker the ability to access and/or modify...

6.1CVSS5.8AI score
Exploits0References2
CNNVD
CNNVDadded 2023/02/14 12:0 a.m.1 views

backstage 跨站脚本漏洞

backstage is an application. Backstage is an open platform for building developer portals. A security vulnerability exists in backstage catalog-model prior to 1.2.0, backstage core-components prior to 0.12.4, and backstage plugin-catalog-backend prior to 1.7.2 that originates from a vulnerability...

6.8CVSS6.2AI score0.0071EPSS
Exploits0References4
CNNVD
CNNVDadded 2021/05/17 12:0 a.m.1 views

Emlog 跨站脚本漏洞

emlog is a PHP and MySQL based blog and CMS builder. A cross-site scripting vulnerability exists in emlog version 6.0.0. The vulnerability can be exploited to execute arbitrary code by adding a specially crafted script as a link to a new blog post...

6.1CVSS5.7AI score0.00686EPSS
Exploits1References2
0day.today
0day.todayadded 2017/01/11 12:0 a.m.21 views

Starting Page 1.3 - SQL Injection Vulnerability

Exploit for php platform in category web applications Vulnerability: Starting Page- SQL Injection Date: 10.01.2017 Vendor Homepage: http://software.friendsinwar.com/ Tested on: win10 Author: JaMbA Script link: http://software.friendsinwar.com/news.php?readmore=31 SQL Injection/Exploit : Vulnerabl...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2017/01/10 12:0 a.m.23 views

Starting Page 1.3 SQL Injection

Vulnerability: Starting Page- SQL Injection Date: 10.01.2017 Vendor Homepage: http://software.friendsinwar.com/ Tested on: win10 Author: JaMbA Script link: http://software.friendsinwar.com/news.php?readmore=31 SQL Injection/Exploit : Vulnerable Parametre : linkid...

0.8AI score
Exploits0
Packet Storm
Packet Stormadded 2011/01/26 12:0 a.m.25 views

PHPDirector Game Edition SQL Injection

PHPDirector Game Edition game.php Sql Injection Vulnerability ================================================================ .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Script : http://scriptsgratuits.info/Scripts/PHP/Jeux/PHPDirector-Game-Edition7.html .:. Dork : "Powered by PHPD Game Editio...

0.5AI score
Exploits0
Rows per page
Query Builder