Lucene search
K

4 matches found

NVD
NVD
added 2026/06/15 9:16 p.m.9 views

CVE-2026-42639

Unauthenticated SQL Injection in GD Rating System = 3.6.2 versions...

9.3CVSS0.00283EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/26 9:14 p.m.2 views

CVE-2026-33669 SiYuan has Arbitrary Document Reading within the Publishing Service

SiYuan is a personal knowledge management system. Prior to version 3.6.2, document IDs were retrieved via the /api/file/readDir interface, and then the /api/block/getChildBlocks interface was used to view the content of all documents. Version 3.6.2 patches the issue...

9.8CVSS5.9AI score0.00523EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/01/16 7:41 p.m.5 views

CVE-2026-23727 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=TipoSaidaControle)

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and nomeClasse=TipoSaidaControl...

4.8CVSS6.4AI score0.0018EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/03/23 12:0 a.m.5 views

PT-2023-17104 · Unknown · Novel-Plus

Name of the Vulnerable Software and Affected Versions: novel-plus version 3.6.2 Description: A critical issue has been found in an unknown functionality of the file common/log/list. The manipulation of the sort argument leads to SQL injection. The attack can be launched remotely. Recommendations:...

7.2CVSS6AI score0.00872EPSS
Exploits1References7
Rows per page
Query Builder