Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

216536 matches found

GithubExploit
GithubExploitadded 2026/03/24 2:53 p.m.124 views

sqlic

SQLIC sca...

5.8AI score
Exploits0
EUVD
EUVDadded 2026/03/24 12:30 p.m.6 views

EUVD-2019-20026

eNdonesia Portal v8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the bid parameter. Attackers can send GET requests to banners.php with crafted SQL payloads in the bid parameter to extra...

8.8CVSS6.2AI score0.00346EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/24 12:30 p.m.4 views

EUVD-2019-20013

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References4
EUVD
EUVDadded 2026/03/24 12:30 p.m.3 views

EUVD-2019-20010

Zeeways Matrimony CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through the profilelist endpoint. Attackers can inject SQL code via the upcast, smother, and sreligion parameters to extract sensitive database information usi...

8.8CVSS5.9AI score0.00327EPSS
Exploits1References4
NVD
NVDadded 2026/03/24 12:16 p.m.4 views

CVE-2019-25641

Netartmedia Vlog System contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the email parameter. Attackers can send POST requests to index.php with malicious email values in the forgottenpassword module to...

8.8CVSS0.00267EPSS
Exploits0References3
NVD
NVDadded 2026/03/24 12:16 p.m.2 views

CVE-2019-25642

Bootstrapy CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. Attackers can inject SQL payloads into the threadid parameter of forum-thread.php, the subject parameter of...

8.8CVSS0.00267EPSS
Exploits0References3
NVD
NVDadded 2026/03/24 12:16 p.m.5 views

CVE-2019-25643

eNdonesia Portal v8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the bid parameter. Attackers can send GET requests to banners.php with crafted SQL payloads in the bid parameter to extra...

8.8CVSS0.00346EPSS
Exploits0References4
NVD
NVDadded 2026/03/24 12:16 p.m.4 views

CVE-2019-25640

Inout Article Base CMS contains SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through the 'p' and 'u' parameters. Attackers can inject SQL code using XOR-based payloads in GET requests to portalLogin.php to extract sensitive database information...

8.8CVSS0.00334EPSS
Exploits0References3
NVD
NVDadded 2026/03/24 12:16 p.m.4 views

CVE-2019-25636

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to newsdetails.php, jobsdetails.php, or jobcmpdetails.php with malicious 'id'...

8.8CVSS0.00327EPSS
Exploits1References3
NVD
NVDadded 2026/03/24 12:16 p.m.4 views

CVE-2019-25635

Zeeways Matrimony CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through the profilelist endpoint. Attackers can inject SQL code via the upcast, smother, and sreligion parameters to extract sensitive database information usi...

8.8CVSS0.00327EPSS
Exploits1References3
NVD
NVDadded 2026/03/24 12:16 p.m.3 views

CVE-2019-25638

Meeplace Business Review Script contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to the addclick.php endpoint with crafted SQL payloads in the 'id'...

7.1CVSS0.00292EPSS
Exploits0References3
NVD
NVDadded 2026/03/24 12:16 p.m.2 views

CVE-2019-25639

Matrimony Website Script M-Plus contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through various POST parameters. Attackers can inject malicious SQL payloads into parameters like txtGender, religion, Fage, an...

8.8CVSS0.00334EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/03/24 11:27 a.m.20 views

CVE-2019-25643 eNdonesia Portal v8.7 SQL Injection via banners.php

eNdonesia Portal v8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the bid parameter. Attackers can send GET requests to banners.php with crafted SQL payloads in the bid parameter to extra...

8.8CVSS0.00346EPSS
Exploits0References4
CVE
CVEadded 2026/03/24 11:27 a.m.15 views

CVE-2019-25643

CVE-2019-25643 affects eNdonesia Portal v8.7 and describes multiple SQL injection vulnerabilities in banners.php via the bid parameter. The flaws allow unauthenticated attackers to execute arbitrary SQL and exfiltrate information from INFORMATION_SCHEMA tables. The vulnerability is characterized ...

8.8CVSS6.2AI score0.00346EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/03/24 11:27 a.m.2 views

CVE-2019-25643 eNdonesia Portal v8.7 SQL Injection via banners.php

eNdonesia Portal v8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the bid parameter. Attackers can send GET requests to banners.php with crafted SQL payloads in the bid parameter to extra...

8.8CVSS6.2AI score0.00346EPSS
Exploits0References4
CVE
CVEadded 2026/03/24 11:27 a.m.10 views

CVE-2019-25642

Bootstrapy CMS is affected by multiple SQL injection vulnerabilities that enable unauthenticated attackers to execute arbitrary SQL via POST parameters. Specifically, the thread_id parameter in forum-thread.php, the subject parameter in contact-submit.php, the post-id parameter in post-new-submit...

8.8CVSS6.3AI score0.00267EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/03/24 11:27 a.m.20 views

CVE-2019-25642 Bootstrapy CMS Lastest Multiple SQL Injection via Forum and Contact Modules

Bootstrapy CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. Attackers can inject SQL payloads into the threadid parameter of forum-thread.php, the subject parameter of...

8.8CVSS0.00267EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/03/24 11:27 a.m.2 views

CVE-2019-25642 Bootstrapy CMS Lastest Multiple SQL Injection via Forum and Contact Modules

Bootstrapy CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. Attackers can inject SQL payloads into the threadid parameter of forum-thread.php, the subject parameter of...

8.8CVSS6.3AI score0.00267EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/03/24 11:27 a.m.1 views

CVE-2019-25642

Bootstrapy CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. Attackers can inject SQL payloads into the threadid parameter of forum-thread.php, the subject parameter of...

8.8CVSS6.3AI score0.00267EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/03/24 11:27 a.m.3 views

CVE-2019-25641 Netartmedia Vlog System Lastest SQL Injection via email Parameter

Netartmedia Vlog System contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the email parameter. Attackers can send POST requests to index.php with malicious email values in the forgottenpassword module to...

8.8CVSS6AI score0.00267EPSS
Exploits0References3
Rows per page
Query Builder