Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

40 matches found

EUVD
EUVDadded 2026/03/24 3:31 a.m.3 views

EUVD-2026-14698

A vulnerability was detected in SourceCodester Online Library Management System 1.0. The impacted element is an unknown function of the file /home.php of the component Parameter Handler. Performing a manipulation of the argument searchField results in sql injection. The attack can be initiated...

7.5CVSS6.9AI score0.00045EPSS
Exploits0References6
NVD
NVDadded 2026/03/24 3:16 a.m.1 views

CVE-2026-4624

A vulnerability was detected in SourceCodester Online Library Management System 1.0. The impacted element is an unknown function of the file /home.php of the component Parameter Handler. Performing a manipulation of the argument searchField results in sql injection. The attack can be initiated...

7.5CVSS0.00045EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/03/24 12:0 a.m.2 views

PT-2026-27305

Name of the Vulnerable Software and Affected Versions SourceCodester Online Library Management System version 1.0 Description A SQL injection issue exists in SourceCodester Online Library Management System version 1.0. Manipulating the searchField argument in a function within the /home.php file ...

7.5CVSS7.2AI score0.00045EPSS
Exploits0References7
CNNVD
CNNVDadded 2026/03/24 12:0 a.m.2 views

SourceCodester Online Library Management System SQL注入漏洞

The SourceCodester Online Library Management System is an open-source online library management system developed by SourceCodester. Version 1.0 of the SourceCodester Online Library Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the...

7.5CVSS7.2AI score0.00045EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/12/19 12:0 a.m.4 views

FastAdmin SQL注入漏洞

FastAdmin is a set of web backend development framework based on ThinkPHP and Bootstrap by Karson's personal developer. FastAdmin 1.7.0.20250506 and earlier versions exist SQL injection vulnerability, the vulnerability stems from the application/common/controller/Backend.php file...

7.2CVSS5.7AI score0.00033EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-4482

Malware in sbrugna...

4.3CVSS6.4AI score0.00346EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2011-4590

Malware in sbrugna...

7.5CVSS6.4AI score0.00816EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2011-5010

Malware in sbrugna...

7.5CVSS6.4AI score0.02754EPSS
Exploits1References19
VulnCheck KEV
VulnCheck KEVadded 2023/12/02 12:0 a.m.1 views

VulnCheck KEV: CVE-2021-34187

main/inc/ajax/model.ajax.php in Chamilo through 1.11.14 allows SQL Injection via the searchField, filters, or filters2 parameter...

9.8CVSS7.4AI score0.89487EPSS
Exploits1References1
SUSE CVE
SUSE CVEadded 2023/02/15 5:6 a.m.1 views

SUSE CVE-2016-2228

Cross-site scripting XSS vulnerability in horde/templates/topbar/menubar.html.php in Horde Groupware before 5.2.12 and Horde Groupware Webmail Edition before 5.2.12 allows remote attackers to inject arbitrary web script or HTML via the searchfield parameter, as demonstrated by a request to...

6.1CVSS6.1AI score0.00575EPSS
Exploits1References3
OSV
OSVadded 2021/06/28 4:15 p.m.10 views

CVE-2021-34187

main/inc/ajax/model.ajax.php in Chamilo through 1.11.14 allows SQL Injection via the searchField, filters, or filters2 parameter...

9.8CVSS8.2AI score
Exploits0References4
NVD
NVDadded 2018/09/12 2:29 p.m.10 views

CVE-2018-3882

An exploitable SQL injection vulnerability exists in the authenticated part of ERPNext v10.1.6. Specially crafted web requests can cause SQL injections resulting in data compromise. The searchfield parameter can be used to perform an SQL injection attack. An attacker can use a browser to trigger...

8.8CVSS6.6AI score0.00261EPSS
Exploits1References1
Prion
Prionadded 2018/09/12 2:29 p.m.9 views

Sql injection

An exploitable SQL injection vulnerability exists in the authenticated part of ERPNext v10.1.6. Specially crafted web requests can cause SQL injections resulting in data compromise. The searchfield parameter can be used to perform an SQL injection attack. An attacker can use a browser to trigger...

6.5CVSS8.8AI score0.00261EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2018/09/12 2:0 p.m.13 views

CVE-2018-3882

An exploitable SQL injection vulnerability exists in the authenticated part of ERPNext v10.1.6. Specially crafted web requests can cause SQL injections resulting in data compromise. The searchfield parameter can be used to perform an SQL injection attack. An attacker can use a browser to trigger...

5.4CVSS8.9AI score0.00261EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2018/09/12 12:0 a.m.1 views

PT-2018-16275

Name of the Vulnerable Software and Affected Versions ERPNext version 10.1.6 Description An exploitable SQL injection issue exists in the authenticated part of the software. Specially crafted web requests can cause SQL injections, resulting in data compromise. The searchfield parameter can be use...

8.8CVSS6.5AI score0.00261EPSS
Exploits1References4
CNVD
CNVDadded 2018/09/11 12:0 a.m.1 views

Frappe ERPNext SQL Injection Vulnerability (CNVD-2019-17164)

Frappe ERPNext is an open source ERP Enterprise Resource Planning system. The system includes functions for financial management, inventory management, customer relationship management, project management and human resource management. A SQL injection vulnerability exists in the 'searchfield'...

8.8CVSS6.3AI score0.00261EPSS
Exploits1References1
CNVD
CNVDadded 2016/04/21 12:0 a.m.1 views

Horde Groupware Cross-Site Scripting Vulnerability

Horde Groupware is email and communication solutions. A cross-site scripting vulnerability in Horde Groupware versions prior to 5.2.12 and Horde Groupware Webmail Edition versions prior to 5.2.12 allows remote attackers to inject arbitrary web script or HTML via the searchfield parameter...

6.1CVSS6AI score0.00575EPSS
Exploits1References1
OSV
OSVadded 2016/04/13 4:59 p.m.7 views

CVE-2016-2228

Cross-site scripting XSS vulnerability in horde/templates/topbar/menubar.html.php in Horde Groupware before 5.2.12 and Horde Groupware Webmail Edition before 5.2.12 allows remote attackers to inject arbitrary web script or HTML via the searchfield parameter, as demonstrated by a request to...

6.1CVSS6AI score
Exploits0References10
OSV
OSVadded 2016/04/13 4:59 p.m.1 views

DEBIAN-CVE-2016-2228

Cross-site scripting XSS vulnerability in horde/templates/topbar/menubar.html.php in Horde Groupware before 5.2.12 and Horde Groupware Webmail Edition before 5.2.12 allows remote attackers to inject arbitrary web script or HTML via the searchfield parameter, as demonstrated by a request to...

6.1CVSS5.8AI score0.00575EPSS
Exploits1References1
OSV
OSVadded 2016/04/13 4:59 p.m.0 views

UBUNTU-CVE-2016-2228

Cross-site scripting XSS vulnerability in horde/templates/topbar/menubar.html.php in Horde Groupware before 5.2.12 and Horde Groupware Webmail Edition before 5.2.12 allows remote attackers to inject arbitrary web script or HTML via the searchfield parameter, as demonstrated by a request to...

6.1CVSS6AI score0.00575EPSS
Exploits1References7
Rows per page
Query Builder