Lucene search
K

182 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/10 5:43 p.m.4 views

CVE-2026-25993

EverShop is a TypeScript-first eCommerce platform. During category update and deletion event handling, the application embeds path / requestpath values—derived from the urlkey stored in the database—into SQL statements via string concatenation and passes them to execute. As a result, if a malicio...

9.3CVSS5.8AI score0.0032EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/02/10 5:43 p.m.6 views

CVE-2026-25993 EverShop has a Second-Order SQL Injection in URL Rewrite Processing Derived from Category URL Keys

EverShop is a TypeScript-first eCommerce platform. During category update and deletion event handling, the application embeds path / requestpath values—derived from the urlkey stored in the database—into SQL statements via string concatenation and passes them to execute. As a result, if a malicio...

9.3CVSS5.8AI score0.0032EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/10 5:43 p.m.28 views

CVE-2026-25993 EverShop has a Second-Order SQL Injection in URL Rewrite Processing Derived from Category URL Keys

EverShop is a TypeScript-first eCommerce platform. During category update and deletion event handling, the application embeds path / requestpath values—derived from the urlkey stored in the database—into SQL statements via string concatenation and passes them to execute. As a result, if a malicio...

9.3CVSS0.0032EPSS
Exploits0References2
CVE
CVE
added 2026/02/10 5:43 p.m.15 views

CVE-2026-25993

EverShop (TypeScript-based eCommerce platform) is affected by a second-order SQL injection during category update/delete handling. The vulnerability stems from embedding path/request_path values, derived from the url_key stored in the database, into SQL statements via string concatenation that ar...

9.8CVSS5.8AI score0.0032EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/10 5:43 p.m.5 views

CVE-2026-25993 EverShop has a Second-Order SQL Injection in URL Rewrite Processing Derived from Category URL Keys

EverShop is a TypeScript-first eCommerce platform. During category update and deletion event handling, the application embeds path / requestpath values—derived from the urlkey stored in the database—into SQL statements via string concatenation and passes them to execute. As a result, if a malicio...

9.3CVSS5.8AI score0.0032EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.9 views

EverShop SQL注入漏洞

EverShop is an open-source NodeJS e-commerce platform developed by EverShop. Versions of EverShop prior to 2.1.1 contained a SQL injection vulnerability. This vulnerability occurred when processing category updates and deletions, where the urlkey value was embedded into SQL statements through...

9.8CVSS5.9AI score0.0032EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.13 views

PT-2026-7418

Name of the Vulnerable Software and Affected Versions EverShop versions prior to 2.1.1 Description EverShop is a TypeScript-first eCommerce platform susceptible to a second-order SQL injection. During category update and deletion event handling, the application incorporates values from the url...

9.8CVSS5.8AI score0.0032EPSS
Exploits0References12
OSV
OSV
added 2026/01/23 9:30 a.m.3 views

GHSA-2P5W-CVG5-GC5C Hibernate vulnerable to SQL Injection

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive informatio...

8.3CVSS6AI score0.00782EPSS
Exploits1References10
Github Security Blog
Github Security Blog
added 2026/01/23 9:30 a.m.5 views

Hibernate vulnerable to SQL Injection

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive informatio...

8.3CVSS6AI score0.00782EPSS
Exploits1References10Affected Software1
NVD
NVD
added 2026/01/23 7:15 a.m.9 views

CVE-2026-0603

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive informatio...

8.3CVSS0.00782EPSS
Exploits1References9
ATTACKERKB
ATTACKERKB
added 2026/01/23 6:31 a.m.4 views

CVE-2026-0603

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive informatio...

8.3CVSS5.6AI score0.00782EPSS
Exploits1References9Affected Software18
Cvelist
Cvelist
added 2026/01/23 6:31 a.m.39 views

CVE-2026-0603 Org.hibernate/hibernate-core: hibernate: information disclosure and data deletion via second-order sql injection

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive informatio...

8.3CVSS0.00782EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2026/01/23 6:31 a.m.7 views

CVE-2026-0603 Org.hibernate/hibernate-core: hibernate: information disclosure and data deletion via second-order sql injection

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive informatio...

8.3CVSS5.7AI score0.00782EPSS
Exploits1References8
CVE
CVE
added 2026/01/23 6:31 a.m.96 views

CVE-2026-0603

CVE-2026-0603 : A second-order SQL injection vulnerability in Hibernate Core via the InlineIdsOrClauseBuilder allows a remote attacker with low privileges to craft non-alphanumeric IDs to read sensitive data (e.g., system files) and manipulate or delete data, causing an application‑level denial o...

8.3CVSS5.7AI score0.00782EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.6 views

PT-2026-4327

Name of the Vulnerable Software and Affected Versions Hibernate affected versions not specified Description A flaw exists in Hibernate that allows a remote attacker with low privileges to exploit a second-order SQL injection. The issue occurs when specially crafted, unsanitized non-alphanumeric...

8.3CVSS5.9AI score0.00782EPSS
Exploits1References18
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.12 views

Hibernate security vulnerability

Hibernate is an object-relational mapping framework developed by the Hibernate company. Hibernate has a security vulnerability that stems from second-order SQL injection, which may lead to information leakage and data deletion...

8.3CVSS5.9AI score0.00782EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2025/11/19 9:59 a.m.13 views

ServiceNow AI Agents Can Be Tricked Into Acting Against Each Other via Second-Order Prompts

Malicious actors can exploit default configurations in ServiceNow's Now Assist generative artificial intelligence AI platform and leverage its agentic capabilities to conduct prompt injection attacks. The second-order prompt injection, according to AppOmni, makes use of Now Assist's agent-to-agen...

7.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/10/24 12:40 a.m.11 views

CVE-2025-61464

gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the searchtable in bbs/search.php...

6.5CVSS8AI score0.00209EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/23 6:31 p.m.5 views

EUVD-2025-35705

gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the searchtable in bbs/search.php...

6.5CVSS7.5AI score0.00209EPSS
Exploits1References3
NVD
NVD
added 2025/10/23 6:16 p.m.7 views

CVE-2025-61464

gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the searchtable in bbs/search.php...

6.5CVSS0.00209EPSS
Exploits1References2
Rows per page
Query Builder