CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CVE•added 2026/02/08 5:2 a.m.•5 views

CVE-2026-2136

CVE-2026-2136 affects projectworlds Online Food Ordering System v1.0. The vulnerability resides in an unknown function of /view-ticket.php where manipulating the ID parameter enables SQL injection, with remote exploitation demonstrated by published exploits. Multiple sources (NVD, Red Hat, CVE li...

9.8CVSS7.2AI score0.00045EPSS

Exploits1References4Affected Software1

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 7 : ipa-4.6.8-5.10.0.1.el7.AXS7 (AXSA:2021-2791:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2791:05 advisory. samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets CVE-2020-25719 Tenable has extracted the preceding description block directly...

9CVSS8AI score0.00213EPSS

Exploits0References2

CVE•added 2026/01/12 6:34 p.m.•25 views

CVE-2026-22200

The CVE-2026-22200 issue affects Enhancesoft osTicket 1.18.x before 1.18.3 and 1.17.x before 1.17.7, where the ticket PDF export path allows an arbitrary file read. A vulnerability arises when a ticket submission includes crafted rich-text HTML with PHP filter expressions, which are not adequatel...

8.7CVSS5.9AI score0.74425EPSS

Exploits3References5Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-1566

Malware in sbrugna...

9.3CVSS7.7AI score0.01567EPSS

Exploits1References42

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-15648

Malware in sbrugna...

7.5CVSS7.4AI score0.00204EPSS

Exploits0References7

Positive Technologies•added 2025/08/15 12:0 a.m.•3 views

PT-2025-33450 · Phpgurukul · Phpgurukul Zoo Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Zoo Management System version 2.1 Description: A vulnerability exists in PHPGurukul Zoo Management System 2.1, specifically within the /admin/add-foreigner-ticket.php file. Manipulation of the visitorname argument can lead to...

6.1CVSS4.2AI score0.00072EPSS

Exploits1References12

CNNVD•added 2022/06/15 12:0 a.m.•1 views

Theme Park Ticketing System SQL注入漏洞

Sourcecoester Theme Park Ticketing System is an application. A simple PHP/MySQLi project that helps manage and generate tickets for theme park or amusement park visitors. sourcecoester Theme Park Ticketing System v1.0 is vulnerable to a SQL injection vulnerability, which stems from a missing...

8.8CVSS6.1AI score0.00257EPSS

Exploits1References2

Prion•added 2020/12/28 8:15 a.m.•17 views

Cross site scripting

An issue was discovered in Zammad before 3.4.1. There is Stored XSS via a Tags element in a TIcket...

3.5CVSS5.1AI score0.00343EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/12/28 7:56 a.m.•13 views

CVE-2020-26035

An issue was discovered in Zammad before 3.4.1. There is Stored XSS via a Tags element in a TIcket...

5.2AI score0.00343EPSS

Exploits0References1

Cvelist•added 2018/04/05 1:0 p.m.•12 views

CVE-2018-1000154

Zammad GmbH Zammad version 2.3.0 and earlier contains a Improper Neutralization of Script-Related HTML Tags in a Web Page CWE-80 vulnerability in the subject of emails which are not html quoted in certain cases. This can result in the embedding and execution of java script code on users browser...

6.5AI score0.0048EPSS

Exploits0References3

Cvelist•added 2017/12/08 5:0 p.m.•16 views

CVE-2017-16854

In Open Ticket Request System OTRS through 3.3.20, 4 through 4.0.26, 5 through 5.0.24, and 6 through 6.0.1, an attacker who is logged in as a customer can use the ticket search form to disclose internal article information of their customer tickets...

7.1AI score0.00358EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by