Lucene search
+L

161 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-11819

Malware in sbrugna...

6.1CVSS6.1AI score0.00907EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-28742

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00399EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27519

Malicious code in bioql PyPI...

4.9CVSS6.3AI score0.00384EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28904

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00309EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-50285

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00583EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/09/13 12:23 p.m.6 views

CVE-2025-40689

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.8CVSS7.9AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/12 7:11 a.m.5 views

CVE-2025-10142

The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...

4.9CVSS6.6AI score0.00384EPSS
Exploits0References1
NVD
NVD
added 2025/09/11 12:15 p.m.7 views

CVE-2025-40689

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.8CVSS0.00309EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/11 11:21 a.m.12 views

CVE-2025-40689 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.3CVSS0.00309EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/11 11:21 a.m.3 views

CVE-2025-40689 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.3CVSS7.5AI score0.00309EPSS
Exploits0References1
CVE
CVE
added 2025/09/11 11:21 a.m.26 views

CVE-2025-40689

CVE-2025-40689 affects Online Fire Reporting System v1.2 (PHPGurukul). The vulnerability is a SQL Injection in the /ofrs/admin/request-details.php endpoint, exploitable via the remark, status, and requestid parameters, enabling an attacker to retrieve, create, update, and delete records in the ba...

9.8CVSS7.5AI score0.00309EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/11 12:0 a.m.10 views

PT-2025-37171

Name of the Vulnerable Software and Affected Versions: Online Fire Reporting System version 1.2 Description: The Online Fire Reporting System is susceptible to SQL Injection attacks. An attacker can potentially retrieve, create, update, and delete database information through the remark, status,...

9.8CVSS7.2AI score0.00309EPSS
Exploits0References5
Snyk
Snyk
added 2025/09/10 7:47 a.m.2 views

SQL Injection

Overview ricardomartins/pagbank-woocommerce is a WooCommerce integration with discount on official rates Affected versions of this package are vulnerable to SQL Injection via the status parameter due to insufficient escaping and lack of proper preparation in the SQL query. An attacker can extract...

6.9CVSS7.1AI score0.00384EPSS
Exploits0References2
NVD
NVD
added 2025/09/10 7:15 a.m.8 views

CVE-2025-10142

The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...

4.9CVSS0.00384EPSS
Exploits0References4
CVE
CVE
added 2025/09/10 6:38 a.m.30 views

CVE-2025-10142

The CVE-2025-10142 vulnerability affects the PagBank / PagSeguro Connect para WooCommerce plugin for WordPress. It is a SQL Injection via the status parameter in all versions up to 4.44.3, caused by insufficient escaping and inadequate query preparation. Authenticated attackers with Shop Manager-...

4.9CVSS6AI score0.00384EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/10 6:38 a.m.11 views

CVE-2025-10142 PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection

The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...

4.9CVSS0.00384EPSS
Exploits0References4
OSV
OSV
added 2025/09/10 6:38 a.m.5 views

CVE-2025-10142 PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection

The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...

4.9CVSS6AI score0.00384EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/09/10 12:0 a.m.3 views

WordPress plugin PagBank / PagSeguro Connect para WooCommerce SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A SQL injection...

4.9CVSS7.5AI score0.00384EPSS
Exploits0References4
CNVD
CNVD
added 2025/06/27 12:0 a.m.3 views

Inventory Management System createBrand.php File SQL Injection Vulnerability

Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter brandStatus of file /phpaction/createBrand.php. An attacker can...

9.8CVSS7.9AI score0.00394EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/25 12:0 a.m.5 views

Code-Projects Inventory Management System 注入漏洞

Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter brandStatus of file /phpaction/createBrand.php. An attacker can...

9.8CVSS8.2AI score0.00394EPSS
Exploits1References6
Rows per page
Query Builder