Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

234323 matches found

Tenable Nessus
Tenable Nessusadded 2026/05/08 12:0 a.m.9 views

Fedora 44 : proftpd (2026-549ee32ea1)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-549ee32ea1 advisory. Cumulative bug-fix release from upstream. Includes fix for a possible SQL-injection issue via modsql CVE-2026-42167. Note that modsql is not enabled by...

8.1CVSS6AI score0.05004EPSS
Exploits6References2
Tenable Nessus
Tenable Nessusadded 2026/05/08 12:0 a.m.7 views

Fedora 43 : proftpd (2026-bdb9342c72)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-bdb9342c72 advisory. Cumulative bug-fix release from upstream. Includes fix for a possible SQL-injection issue via modsql CVE-2026-42167. Note that modsql is not enabled by...

8.1CVSS5.8AI score0.05004EPSS
Exploits6References2
Tenable Nessus
Tenable Nessusadded 2026/05/08 12:0 a.m.5 views

Fedora 42 : proftpd (2026-739d341ab8)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-739d341ab8 advisory. Cumulative bug-fix release from upstream. Includes fix for a possible SQL-injection issue via modsql CVE-2026-42167. Note that modsql is not enabled by...

8.1CVSS6AI score0.05004EPSS
Exploits6References2
Vulnrichment
Vulnrichmentadded 2026/05/08 12:0 a.m.12 views

CVE-2026-37431

Beauty Parlour Management System v1.1 was discovered to contain a SQL injection vulnerability via the aptnumber parameter in the /appointment-detail.php endpoint. This vulnerability allows attackers to access sensitive database information via a crafted SQL statement...

5.9AI score0.0026EPSS
Exploits0References1
CISA KEV Catalog
CISA KEV Catalogadded 2026/05/08 12:0 a.m.12 views

BerriAI LiteLLM SQL Injection Vulnerability

BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorized access to the proxy and the credentials it manages...

9.8CVSS6.1AI score0.95938EPSS
In wildExploits6
Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.9 views

PT-2026-38652

Name of the Vulnerable Software and Affected Versions SourceCodester SUP Online Shopping version 1.0 Description A remote SQL injection exists in the wishlist.php file. This issue occurs when the delwlistid argument is manipulated, allowing an attacker to execute unauthorized database queries...

7.5CVSS7.3AI score0.00254EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.9 views

PT-2026-38676

Name of the Vulnerable Software and Affected Versions OttoKit: All-in-One Automation Platform WordPress plugin versions prior to 1.1.23 Description Insufficient sanitization of user input used in a SQL statement allows unauthenticated attackers to perform SQL injection attacks. Recommendations...

8.6CVSS5.8AI score0.00262EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.11 views

PT-2026-38653

Name of the Vulnerable Software and Affected Versions SourceCodester SUP Online Shopping version 1.0 Description An issue exists in the file '/admin/message.php' where the manipulation of the seenid argument allows for SQL injection, a technique used to interfere with the queries that an...

7.5CVSS7AI score0.00254EPSS
Exploits0References7
NVD
NVDadded 2026/05/07 10:16 p.m.27 views

CVE-2026-8114

A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by this issue is some unknown functionality of the file /sys/dict/loadTreeData of the component JSON Object Handler. The manipulation of the argument condition leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS0.00196EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/07 10:0 p.m.42 views

CVE-2026-8114 JeecgBoot JSON Object loadTreeData sql injection

A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by this issue is some unknown functionality of the file /sys/dict/loadTreeData of the component JSON Object Handler. The manipulation of the argument condition leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS0.00196EPSS
Exploits0References5
CVE
CVEadded 2026/05/07 10:0 p.m.17 views

CVE-2026-8114

CVE-2026-8114 affects JeecgBoot up to 3.9.1, targeting the file path /sys/dict/loadTreeData in the JSON Object Handler. The vulnerability stems from manipulation of an input argument in that function, enabling SQL injection. The issue is remote in nature, with a publicly available exploit noted i...

6.5CVSS6.4AI score0.00196EPSS
Exploits0References5
EUVD
EUVDadded 2026/05/07 9:30 p.m.7 views

EUVD-2026-28443

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References6
EUVD
EUVDadded 2026/05/07 9:30 p.m.10 views

EUVD-2026-28444

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References6
NVD
NVDadded 2026/05/07 9:16 p.m.11 views

CVE-2026-8097

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may...

6.5CVSS0.00192EPSS
Exploits0References5
NVD
NVDadded 2026/05/07 9:16 p.m.13 views

CVE-2026-8098

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.5CVSS0.00254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/07 8:30 p.m.4 views

CVE-2026-8098

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/07 8:30 p.m.9 views

CVE-2026-8098 code-projects Feedback System checklogin.php sql injection

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
CVE
CVEadded 2026/05/07 8:30 p.m.15 views

CVE-2026-8098

code-projects Feedback System 1.0 contains a SQL injection in an unknown function of /admin/checklogin.php triggered by manipulating the email parameter. The flaw can be exploited remotely, with exploits publicly disclosed. No remediation details are provided in the supplied documents.

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/07 8:15 p.m.45 views

CVE-2026-8097 CodeAstro Online Classroom askquery.php sql injection

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may...

6.5CVSS0.00192EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/07 8:15 p.m.7 views

CVE-2026-8097 CodeAstro Online Classroom askquery.php sql injection

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
Rows per page
Query Builder