CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/10/10 4:26 a.m.•2 views

CVE-2025-11530

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

8.8CVSS6.9AI score0.0004EPSS

Exploits1References1

Positive Technologies•added 2025/10/09 12:0 a.m.•2 views

PT-2025-41356

Name of the Vulnerable Software and Affected Versions code-projects Online Complaint Site version 1.0 Description A flaw exists in code-projects Online Complaint Site 1.0 that allows for remote SQL injection. The issue is located in the file /cms/admin/state.php and involves manipulation of the...

8.8CVSS6.3AI score0.0004EPSS

Exploits1References10

OSV•added 2025/07/29 1:15 p.m.•1 views

CVE-2025-40685

Reflected Cross-Site Scripting XSS in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the 'searcstate' parameter in/state.php...

6.1CVSS6AI score0.00129EPSS

Exploits0References1

Vulnrichment•added 2025/06/05 11:0 a.m.•7 views

CVE-2025-5654 PHPGurukul Complaint Management System edit-state.php sql injection

A vulnerability was found in PHPGurukul Complaint Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-state.php. The manipulation of the argument description leads to sql injection. The attack may be launched remotely. The...

6.5CVSS6.8AI score0.00197EPSS

Exploits1References5

OSV•added 2022/11/07 3:15 p.m.•1 views

CVE-2022-43318

Human Resource Management System v1.0 was discovered to contain a SQL injection vulnerability via the stateedit parameter at /hrm/state.php...

8.8CVSS5.8AI score0.00257EPSS

Exploits1References1

ATTACKERKB•added 2022/11/07 3:15 p.m.•2 views

CVE-2022-43318

Human Resource Management System v1.0 was discovered to contain a SQL injection vulnerability via the stateedit parameter at /hrm/state.php...

8.8CVSS5.8AI score0.00257EPSS

Exploits1References2

Openbugbounty•added 2018/03/06 11:47 p.m.•12 views

csr.gov.in XSS vulnerability

Open Bug Bounty ID: OBB-575364 Description| Value ---|--- Affected Website:| csr.gov.in Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

NVD•added 2017/12/13 9:29 a.m.•10 views

CVE-2017-17640

Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter...

9.8CVSS10AI score0.02512EPSS

Exploits1References2

Cvelist•added 2017/12/13 9:0 a.m.•13 views

CVE-2017-17640

Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter...

10AI score0.02512EPSS

Exploits1References2

CVE•added 2017/12/13 9:0 a.m.•49 views

CVE-2017-17640

The CVE-2017-17640 entry concerns Advanced World Database 2.0.5, which is vulnerable to SQL Injection via the city.php and state.php parameters (country and state inputs). Multiple connected sources (CNVD-2017-37430, NVD entries) describe a remote injection path that can affect database queries t...

9.8CVSS9.9AI score0.02512EPSS

Exploits1References2Affected Software1

Openbugbounty•added 2017/06/29 2:11 p.m.•11 views

kcmusa.org XSS vulnerability

Vulnerable URL: http://www.kcmusa.org/board/state.php?nation=1"...

6.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by