Lucene search
K

573 matches found

Nuclei
Nuclei
added 18 hours ago43 views

WordPress JoomSport <5.2.8 - SQL Injection

WordPress JoomSport plugin before 5.2.8 contains a SQL injection vulnerability. The plugin does not properly sanitize and escape a parameter before using it in a SQL statement. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operation...

9.8CVSS7.3AI score0.04756EPSS
Exploits2References5
HackRead
HackRead
added 2026/04/24 10:9 a.m.6 views

French Police Arrest HexDex Hacker Over Mass Data Theft and Leaks

French police arrest HexDex hacker, a 20-year-old suspect accused of mass data theft and leaks targeting government, sports groups, and firms...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/14 7:23 p.m.8 views

CVE-2026-31262

Cross Site Scripting vulnerability in Altenar Sportsbook Software Platform SB2 v.2.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the URL parameter...

6.1CVSS6.1AI score0.00229EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/13 3:25 p.m.11 views

Malicious code in @sports-api/api-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6445b51deb95e237826188e8e4897f9c43cf8d9232f7d479b59922066a5ad3c The package @sports-api/api-sdk was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/04/13 3:25 p.m.3 views

MAL-2026-2595 Malicious code in @sports-api/api-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6445b51deb95e237826188e8e4897f9c43cf8d9232f7d479b59922066a5ad3c The package @sports-api/api-sdk was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/04/13 3:25 p.m.6 views

Malicious Package

Overview @sports-api/api-sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added 2026/04/08 6:43 a.m.23 views

CVE-2026-4871 Sports Club Management <= 1.12.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'before' Attribute

The Sports Club Management plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'before' and 'after' attributes of the scmmemberdata shortcode in all versions up to, and including, 1.12.9 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS0.00181EPSS
Exploits0References3
CVE
CVE
added 2026/04/08 6:43 a.m.34 views

CVE-2026-4871

The Sports Club Management WordPress plugin (affected: versions up to and including 1.12.9) is vulnerable to Stored Cross-Site Scripting via the scm_member_data shortcode’s before/after attributes. Root cause: insufficient input sanitization and output escaping, enabling authenticated attackers w...

6.4CVSS6.1AI score0.00181EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/04/08 1:54 a.m.5 views

WordPress Sports Club Management plugin <= 1.12.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'before' Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'before' Attribute vulnerability discovered by zaim in WordPress Plugin Sports Club Management versions = 1.12.9...

6.4CVSS5.9AI score0.00181EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

WordPress plugin Sports Club Management 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.7AI score0.00181EPSS
Exploits0References3
CVE
CVE
added 2026/03/05 5:54 a.m.9 views

CVE-2026-28045

CVE-2026-28045 refers to a Local File Inclusion in the WordPress theme “N7 | Golf Club Sports & Events” by ThemeREX. The issue is described as an “Improper Control of Filename for Include/Require Statement in PHP Program,” affecting the theme up to version

8.1CVSS5.9AI score0.00403EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/02 11:27 a.m.3 views

WordPress N7 | Golf Club Sports & Events theme <= 2.16.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme N7 | Golf Club Sports & Events versions = 2.16.0...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.10 views

Vivo Health 安全漏洞

Vivo Health is a sports guidance and health management software developed by the Chinese company Vivo. There is a security vulnerability in Vivo Health, which stems from insufficient protection mechanisms, potentially leading to the leakage of certain information...

5.1CVSS5.8AI score0.00134EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/02/25 12:26 p.m.7 views

WordPress TopScorer - Sports WordPress Theme theme <= 1.2 - Local File Inclusion vulnerability

WordPress TopScorer - Sports WordPress Theme theme = 1.2 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme TopScorer - Sports WordPress Theme versions = 1.2...

8.1CVSS5.9AI score0.00415EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 12:34 p.m.6 views

CVE-2023-45370

An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. SportsTeams: Special:SportsManagerLogo and Special:SportsTeamsManagerLogo do not check for the sportsteamsmanager user right, and thus an attacker may ...

5.3CVSS6.7AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.7 views

CVE-2024-34824

Missing Authorization vulnerability in ThemeBoy SportsPress – Sports Club & League Manager.This issue affects SportsPress – Sports Club & League Manager: from n/a through 2.7.20...

6.3CVSS6.9AI score0.00246EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/26 4:56 p.m.8 views

CVE-2025-13422

A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/changespwd.php. Performing manipulation of the argument loginid results in sql injection. The attack may be initiated remotely. The exploit...

9.8CVSS7AI score0.00385EPSS
Exploits1References1
OSV
OSV
added 2025/11/20 12:15 a.m.2 views

CVE-2025-13422

A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/changespwd.php. Performing manipulation of the argument loginid results in sql injection. The attack may be initiated remotely. The exploit...

9.8CVSS5.8AI score0.00385EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/11/20 12:0 a.m.4 views

Sports Club Management System in php SQL注入漏洞

Sports Club Management System in php is a sports club management system by Darkseid Personal Developer. A SQL injection vulnerability exists in Sports Club Management System in php version 1.0, which stems from an incorrect manipulation of the parameter loginid in the file...

9.8CVSS7.7AI score0.00385EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/19 11:32 p.m.4 views

CVE-2025-13422 freeprojectscodes Sports Club Management System change_s_pwd.php sql injection

A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/changespwd.php. Performing manipulation of the argument loginid results in sql injection. The attack may be initiated remotely. The exploit...

7.5CVSS7.3AI score0.00385EPSS
Exploits1References4
Rows per page
Query Builder