CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

39 matches found

RedhatCVE•added 2026/01/09 9:45 a.m.•4 views

CVE-2015-0918

Cross-site scripting XSS vulnerability in the administrative backend in Sefrengo before 1.6.1 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter to backend/main.php...

4.3CVSS5.9AI score0.00456EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-1563

Malware in sbrugna...

7.5CVSS6.2AI score0.01412EPSS

Exploits5References7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-0927

Malware in sbrugna...

7.5CVSS6.4AI score0.01EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-0926

Malware in sbrugna...

4.3CVSS6.4AI score0.00456EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-5069

Malware in sbrugna...

9.8CVSS9.5AI score0.00307EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 4:13 a.m.•7 views

CVE-2015-0919

Multiple SQL injection vulnerabilities in the administrative backend in Sefrengo before 1.6.1 allow remote administrators to execute arbitrary SQL commands via the 1 idcat or 2 idclient parameter to backend/main.php...

7.5CVSS8.9AI score0.01EPSS

Exploits1References1

CNVD•added 2017/09/08 12:0 a.m.•1 views

Sefrengo SQL Injection Vulnerability

Sefrengo is an open source web content management system CMS based on PHP and MySql. The system supports WYSIWYG editors, image uploads and more. A SQL injection vulnerability exists in versions of Sefrengo prior to 1.6.5 beta2. A remote attacker can exploit this vulnerability to execute arbitrar...

9.8CVSS10AI score0.00307EPSS

Exploits0References1

ATTACKERKB•added 2017/09/07 8:29 p.m.•0 views

CVE-2015-5052

SQL injection vulnerability in Sefrengo before 1.6.5 beta2...

9.8CVSS5.8AI score0.00307EPSS

Exploits0References2

NVD•added 2017/09/07 8:29 p.m.•7 views

CVE-2015-5052

SQL injection vulnerability in Sefrengo before 1.6.5 beta2...

9.8CVSS9.9AI score0.00307EPSS

Exploits0References1

Prion•added 2017/09/07 8:29 p.m.•7 views

Sql injection

SQL injection vulnerability in Sefrengo before 1.6.5 beta2...

7.5CVSS8.3AI score0.00307EPSS

Exploits0References1Affected Software1

CVE•added 2017/09/07 8:0 p.m.•31 views

CVE-2015-5052

The connected sources confirm a SQL injection vulnerability in Sefrengo prior to version 1.6.5 beta2. The flaw affects the web CMS (PHP/MySQL) and, if exploitable, allows an attacker to execute arbitrary SQL commands remotely, with the impact described as affecting confidentiality, integrity, and...

9.8CVSS9.7AI score0.00307EPSS

Exploits0References1Affected Software1

Cvelist•added 2017/09/07 8:0 p.m.•6 views

CVE-2015-5052

SQL injection vulnerability in Sefrengo before 1.6.5 beta2...

9.9AI score0.00307EPSS

Exploits0References1

CNVD•added 2015/02/04 12:0 a.m.•3 views

Multiple SQL Injection Vulnerabilities in Sefrengo CMS

Sefrengo CMS is a content management system. Sefrengo CMS has multiple SQL injection vulnerabilities that could be exploited by remote attackers to submit specially crafted SQL queries to manipulate or obtain database data...

7.5CVSS8.1AI score0.01412EPSS

Exploits5References1

NVD•added 2015/02/03 4:59 p.m.•17 views

CVE-2015-1428

Multiple SQL injection vulnerabilities in Sefrengo before 1.6.2 allow 1 remote attackers to execute arbitrary SQL commands via the sefrengo cookie in a login to backend/main.php or 2 remote authenticated users to execute arbitrary SQL commands via the valueid parameter in a savevalue action to...

7.5CVSS8AI score0.01412EPSS

Exploits5References5

Prion•added 2015/02/03 4:59 p.m.•22 views

Sql injection

7.5CVSS8.7AI score0.01412EPSS

Exploits5References5Affected Software1

CVE•added 2015/02/03 4:0 p.m.•50 views

CVE-2015-1428

Sefrengo CMS (before 1.6.2) has multiple SQL injection vulnerabilities. Exploitable via cookies (sefrengo cookie during login to backend/main.php) or via value_id in a save_value action to backend/main.php; vulnerable code paths include /backend/external/phplib/ct_sql.inc and /backend/inc/class.v...

7.5CVSS8.2AI score0.01412EPSS

Exploits5References5Affected Software1

Cvelist•added 2015/02/03 4:0 p.m.•20 views

CVE-2015-1428

8AI score0.01412EPSS

Exploits5References5

0day.today•added 2015/02/03 12:0 a.m.•47 views

Sefrengo CMS 1.6.1 - Multiple SQL Injection Vulnerabilities

Sefrengo CMS version 1.6.1 suffers from multiple remote SQL injection vulnerabilities. Exploit Title: Sefrengo CMS v1.6.1 - Multiple SQL Injection Vulnerabilities Google Dork: N/A Date: 01/26/2015 Exploit Author: Nguyen Hung Tuan email protected & ITAS Team www.itas.vn Vendor Homepage:...

7.5CVSS0.7AI score0.01412EPSS

Exploits5

exploitpack•added 2015/02/02 12:0 a.m.•49 views

Sefrengo CMS 1.6.1 - Multiple SQL Injections

Sefrengo CMS 1.6.1 - Multiple SQL Injections Exploit Title: Sefrengo CMS v1.6.1 - Multiple SQL Injection Vulnerabilities Google Dork: N/A Date: 01/26/2015 Exploit Author: Nguyen Hung Tuan [email protected] & ITAS Team www.itas.vn Vendor Homepage: http://www.sefrengo.org/ Software Link:...

7.5CVSS0.4AI score0.01412EPSS

Exploits5

Exploit DB•added 2015/02/02 12:0 a.m.•59 views

Sefrengo CMS 1.6.1 - Multiple SQL Injections

Exploit Title: Sefrengo CMS v1.6.1 - Multiple SQL Injection Vulnerabilities Google Dork: N/A Date: 01/26/2015 Exploit Author: Nguyen Hung Tuan [email protected] & ITAS Team www.itas.vn Vendor Homepage: http://www.sefrengo.org/ Software Link: http://forum.sefrengo.org/index.php?showtopic=3368...

7.5CVSS6.6AI score0.01412EPSS

Exploits5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by