Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

RedhatCVE
RedhatCVEadded 2025/11/17 9:7 a.m.4 views

CVE-2025-13208

A security flaw has been discovered in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. The impacted element is an unknown function of the file controller/api/hotelList.php. The manipulation of the argument subjectId/cityName results in sql injection. The attack can be...

6.5CVSS6.6AI score0.00033EPSS
Exploits0References1
CVE
CVEadded 2025/11/15 6:2 p.m.7 views

CVE-2025-13208

CVE-2025-13208 affects FantasticLBP Hotels Server, with an SQL injection in controller/api/hotelList.php where manipulating the subjectId/cityName parameter can expose or modify data. The vulnerability is exploitable remotely and public exploits exist. Affected versions are stated as prior to 67b...

6.5CVSS6.3AI score0.00033EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2025/11/15 6:2 p.m.3 views

CVE-2025-13208 FantasticLBP Hotels Server hotelList.php sql injection

A security flaw has been discovered in FantasticLBP Hotels Server up to 67b44df162fab26df209bd5d5d542875fcbec1d0. The impacted element is an unknown function of the file controller/api/hotelList.php. The manipulation of the argument subjectId/cityName results in sql injection. The attack can be...

6.5CVSS6.3AI score0.00033EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2025/11/15 12:0 a.m.2 views

PT-2025-47060

Name of the Vulnerable Software and Affected Versions FantasticLBP Hotels Server versions prior to 67b44df162fab26df209bd5d5d542875fcbec1d0 Description A security flaw exists in FantasticLBP Hotels Server. The issue involves a SQL injection that can be triggered by manipulating the...

6.5CVSS7.3AI score0.00033EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/10/07 6:9 a.m.1 views

CVE-2025-11321

A vulnerability was detected in zhuimengshaonian wisdom-education up to 1.0.4. The affected element is an unknown function of the file src/main/java/com/education/api/controller/student/WrongBookController.java. Performing manipulation of the argument subjectId results in authorization bypass. Th...

5.3CVSS6.7AI score0.00033EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-4722

Malware in sbrugna...

7.5CVSS6.4AI score0.01042EPSS
Exploits1References7
NVD
NVDadded 2025/10/06 5:15 a.m.1 views

CVE-2025-11321

A vulnerability was detected in zhuimengshaonian wisdom-education up to 1.0.4. The affected element is an unknown function of the file src/main/java/com/education/api/controller/student/WrongBookController.java. Performing manipulation of the argument subjectId results in authorization bypass. Th...

5.3CVSS0.00033EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/10/06 5:2 a.m.6 views

CVE-2025-11321 zhuimengshaonian wisdom-education WrongBookController.java authorization

A vulnerability was detected in zhuimengshaonian wisdom-education up to 1.0.4. The affected element is an unknown function of the file src/main/java/com/education/api/controller/student/WrongBookController.java. Performing manipulation of the argument subjectId results in authorization bypass. Th...

5.3CVSS0.00033EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/10/06 5:2 a.m.1 views

CVE-2025-11321 zhuimengshaonian wisdom-education WrongBookController.java authorization

A vulnerability was detected in zhuimengshaonian wisdom-education up to 1.0.4. The affected element is an unknown function of the file src/main/java/com/education/api/controller/student/WrongBookController.java. Performing manipulation of the argument subjectId results in authorization bypass. Th...

5.3CVSS6.5AI score0.00033EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/10/06 12:0 a.m.1 views

PT-2025-40849

Name of the Vulnerable Software and Affected Versions zhuimengshaonian wisdom-education versions up to 1.0.4 Description A flaw exists in zhuimengshaonian wisdom-education that allows for authorization bypass. This occurs through manipulation of the subjectId argument within an unknown function...

5.3CVSS4.1AI score0.00033EPSS
Exploits0References9
CNNVD
CNNVDadded 2025/10/06 12:0 a.m.1 views

wisdom-education 安全漏洞

wisdom-education is a cloud intelligence education platform by zhuimengshaonian individual developer. A security vulnerability exists in wisdom-education 1.0.4 and earlier versions, which originates from the incorrect operation of subjectId in the file...

5.3CVSS4.8AI score0.00033EPSS
Exploits0References5
NVD
NVDadded 2025/09/27 10:15 p.m.1 views

CVE-2025-11080

A security vulnerability has been detected in zhuimengshaonian wisdom-education up to 1.0.4. This vulnerability affects the function selectStudentExamInfoList of the file src/main/java/com/education/api/controller/student/ExamInfoController.java. Such manipulation of the argument subjectId leads ...

5.3CVSS0.00036EPSS
Exploits0References5
CVE
CVEadded 2025/09/27 9:32 p.m.6 views

CVE-2025-11080

CVE-2025-11080 affects zhuimengshaonian wisdom-education up to 1.0.4. The vulnerability lies in ExamInfoController.java, in the selectStudentExamInfoList function, where manipulation of the subjectId parameter leads to improper authorization. Itمكن be exploited remotely and the exploit has been p...

5.3CVSS6.5AI score0.00036EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/09/27 12:0 a.m.2 views

PT-2025-39747

Name of the Vulnerable Software and Affected Versions zhuimengshaonian wisdom-education versions through 1.0.4 Description A security issue exists in zhuimengshaonian wisdom-education. Improper authorization can occur through manipulation of the subjectId argument within the...

5.3CVSS4.5AI score0.00036EPSS
Exploits0References9
seebug.org
seebug.orgadded 2016/05/04 12:0 a.m.23 views

YYJIACMS v3.1 android.php参数 subjectid SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2016/05/04 12:0 a.m.13 views

Lindon-EDU V2 数字校园平台 /code/teach/class/classcourse.aspx 参数SubjectID SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
Prion
Prionadded 2006/05/11 10:2 a.m.6 views

Sql injection

Multiple SQL injection vulnerabilities in EImagePro allow remote attackers to execute arbitrary SQL commands via the 1 CatID parameter to subList.asp, 2 SubjectID parameter to imageList.asp, or 3 Pic parameter to view.asp...

7.5CVSS9.3AI score0.01735EPSS
Exploits1References8
NVD
NVDadded 2006/05/11 10:2 a.m.8 views

CVE-2006-2300

Multiple SQL injection vulnerabilities in EImagePro allow remote attackers to execute arbitrary SQL commands via the 1 CatID parameter to subList.asp, 2 SubjectID parameter to imageList.asp, or 3 Pic parameter to view.asp...

7.5CVSS8.5AI score0.01735EPSS
Exploits1References8
Cvelist
Cvelistadded 2006/03/10 2:0 a.m.12 views

CVE-2005-4729

SQL injection vulnerability in show.php in VBZooM Forum allows remote attackers to execute arbitrary SQL commands via the SubjectID parameter...

8.2AI score0.01042EPSS
Exploits1References6
NVD
NVDadded 2005/12/31 5:0 a.m.7 views

CVE-2005-4729

SQL injection vulnerability in show.php in VBZooM Forum allows remote attackers to execute arbitrary SQL commands via the SubjectID parameter...

7.5CVSS8.2AI score0.01042EPSS
Exploits1References6
Rows per page
Query Builder