CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2022/01/05 12:0 a.m.•254 views

openSIS Student Information System 8.0 - 'multiple' SQL Injection

Exploit Title: openSIS Student Information System 8.0 - 'multiple' SQL Injection Date: 26/12/2021 Exploit Author: securityforeveryone.com Author Mail: helloATsecurityforeveryone.com Vendor Homepage: https://opensis.com Software Link: https://opensis.com Version: 8.0 Community Edition Tested on:...

wpexploit•added 2021/12/06 12:0 a.m.•69 views

WPcalc <= 2.1 - Authenticated SQL Injection

The plugin does not sanitize user input into the 'did' parameter and uses it in a SQL statement, leading to an authenticated SQL Injection vulnerability. Plugin author closed the plugin. http://www.example.com/wp-admin/admin.php?page=wpcalc&info=del&did=1 AND SELECT 7156 FROM SELECTSLEEP5MIkl or,...

8.8CVSS1.3AI score0.00889EPSS

Exploits2

Packet Storm•added 2021/11/02 12:0 a.m.•402 views

Employee Record Management System 1.2 SQL Injection

Title: Employee Record Management System 1.2 - 'empid' SQL injection Unauthenticated Exploit Author: Anubhav Singh Date: 2021-10-31 Vendor Homepage: https://phpgurukul.com/employee-record-management-system-in-php-and-mysql/ Version: 1.2 Software Link:...

7.1AI score

0day.today•added 2021/11/02 12:0 a.m.•264 views

Employee Record Management System 1.2 - (empid) SQL injection Vulnerability

Title: Employee Record Management System 1.2 - 'empid' SQL injection Unauthenticated Exploit Author: Anubhav Singh Vendor Homepage: https://phpgurukul.com/employee-record-management-system-in-php-and-mysql/ Version: 1.2 Software Link: https://phpgurukul.com/?smdprocessdownload=1&downloadid=8967...

7.1AI score

OSV•added 2021/10/27 5:15 p.m.•16 views

CVE-2021-37808

SQL Injection vulnerabilities exist in https://phpgurukul.com News Portal Project 3.1 via the 1 category, 2 subcategory, 3 sucatdescription, and 4 username parameters, the server response is about N seconds delay respectively which mean it is vulnerable to MySQL Blind Time Based. An attacker can...

5.9CVSS5.8AI score0.0116EPSS

Exploits1References3

Prion•added 2021/10/27 5:15 p.m.•10 views

Sql injection

An SQL Injection vulnerability exists in https://phpgurukul.com Vehicle Parking Management System affected version 1.0. The system is vulnerable to time-based SQL injection on multiple endpoints. Based on the SLEEPN function payload that will sleep for a number of seconds used on the 1 editid , 2...

4.3CVSS6.2AI score0.0116EPSS

Exploits1References3Affected Software1

CVE•added 2021/10/27 4:1 p.m.•53 views

CVE-2021-37806

CVE-2021-37806 affects Vehicle Parking Management System v1.0. The connected documents confirm a time-based SQL injection (MySQL Blind) vulnerability in multiple endpoints, triggered by the SLEEP(N) payload on parameters editid, viewid, and catename. This can allow an attacker to infer data by me...

5.9CVSS6.2AI score0.0116EPSS

Exploits1References3Affected Software1

Exploit DB•added 2021/10/13 12:0 a.m.•394 views

Company's Recruitment Management System 1.0 - 'Multiple' SQL Injection (Unauthenticated)

Title: Company's Recruitment Management System 1.0 - 'Multiple' SQL Injection Unauthenticated Exploit Author: Yash Mahajan Date: 2021-10-09 Vendor Homepage: https://www.sourcecodester.com/php/14959/companys-recruitment-management-system-php-and-sqlite-free-source-code.html Version: 1 Software Lin...

Packet Storm•added 2021/10/08 12:0 a.m.•235 views

IFSC Code Finder Project 1.0 SQL Injection

Title: IFSC Code Finder Project 1.0 - SQL injection Unauthenticated Exploit Author: Yash Mahajan Date: 2021-10-07 Vendor Homepage: https://phpgurukul.com/ifsc-code-finder-project-using-php/ Version: 1 Software Link: https://phpgurukul.com/?smdprocessdownload=1&downloadid=14478 Tested On: Windows...

0.3AI score

Exploit DB•added 2021/10/08 12:0 a.m.•226 views

IFSC Code Finder Project 1.0 - SQL injection (Unauthenticated)

Packet Storm•added 2021/10/06 12:0 a.m.•343 views

Online-Food-Ordering-Web-App SQL Injection

CVE-2021-41647 SQL Injection in Online-Food-Ordering-Web-App The Online-Food-Ordering-Web-App is vulnerable to un-authenticated error and time-based blind SQL Injection attacks. The username parameter on the /login.php page does not sanitize the user input, an attacker is able to bypass the login...

0.1AI score0.00733EPSS

0day.today•added 2021/10/04 12:0 a.m.•368 views

Online-Food-Ordering-Web-App SQL Injection Vulnerability

9.1CVSS0.2AI score0.00733EPSS

GithubExploit•added 2021/09/30 6:16 a.m.•187 views

Exploit for SQL Injection in Online-Shopping-System-Advanced_Project Online-Shopping-System-Advanced

CVE-2021-41648 CVE-2021-41648 SQL Injection in online-shoppin...

7.5CVSS8AI score0.75422EPSS

GithubExploit•added 2021/09/28 7:59 a.m.•126 views

Exploit for SQL Injection in Online_Food_Ordering_Web_App_Project Online_Food_Ordering_Web_App

CVE-2021-41647 CVE-2021-41647 SQL Injection in Online-Food-Or...

9.1CVSS9.6AI score0.00733EPSS

0day.today•added 2021/09/27 12:0 a.m.•192 views

Library System 1.0 - (student_id) SQL injection Vulnerability

Exploit Title: Library System 1.0 - 'studentid' SQL injection Authenticated Google Dork: intitle: "Library System by YahooBaba" Exploit Author: Vinay Bhuria Vendor Homepage: https://www.yahoobaba.net Software Link: https://www.yahoobaba.net/project/library-system-in-php Version: v1.0 Tested on:...

0.4AI score

0day.today•added 2021/09/22 12:0 a.m.•138 views

E-Negosyo System 1.0 SQL Injection Vulnerability

Exploit Title: E-Negosyo System 1.0 - Time-Based Blind SQLi - admin/login.php Exploit Author: Janik Wehrli Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/bsenordering0.zip Version: 1.0 Category:...

Packet Storm•added 2021/09/22 12:0 a.m.•224 views

E-Negosyo System 1.0 SQL Injection

Exploit Title: E-Negosyo System 1.0 - Time-Based Blind SQLi - admin/login.php Date: 2021-09-22 Exploit Author: Janik Wehrli Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/bsenordering0.zip Version:...