Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2026/05/27 7:45 a.m.7 views

CVE-2026-40812 Unauthenticated SQLi in getLiveValues function

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getLiveValues functions sn parameter due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

8.7CVSS5.9AI score0.0032EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.8 views

PT-2026-43552

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getLiveValues functions sn parameter due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

8.7CVSS5.9AI score0.0032EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/07/30 12:0 a.m.3 views

code-projects Exam Form Submission 注入漏洞

Exam Form Submission is an exam form. Exam Form Submission suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter USN in the file /register.php. An attacker can exploit this vulnerability to execute illegal SQL...

9.8CVSS8.2AI score0.00477EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2020/07/07 4:15 p.m.0 views

CVE-2020-15029

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter...

5.4CVSS5.7AI score0.00568EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiativeadded 2020/01/03 12:0 a.m.16 views

Cisco Data Center Network Manager getSwitchDbIdBySerialNumber SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco Data Center Network Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

7.2CVSS5AI score0.46935EPSS
Exploits10References1
Zero Day Initiative
Zero Day Initiativeadded 2020/01/03 12:0 a.m.14 views

Cisco Data Center Network Manager getSwitchName SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco Data Center Network Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

7.2CVSS4.1AI score0.46935EPSS
Exploits10References1
CNVD
CNVDadded 2016/12/26 12:0 a.m.2 views

EasyNetSites 'nameDetail.php' Page SQL Injection Vulnerability

EasyNetSites is a WEB-based tool for managing organizational relationships on websites. A SQL injection vulnerability exists in the sn parameter of the nameDetail.php page of EasyNetSites, which originates from the program's failure to adequately filter user-submitted input, and can be exploited ...

8.1AI score
Exploits0References1
Rows per page
Query Builder