Lucene search
+L

12 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-26601

Malware in sbrugna...

9.8CVSS9.2AI score0.01013EPSS
Exploits1References4
redhatcve
redhatcve
added 2025/05/22 7:8 p.m.10 views

CVE-2021-3262

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

9.8CVSS7.7AI score0.01013EPSS
Exploits1References1
nvd
nvd
added 2023/08/29 8:15 p.m.26 views

CVE-2021-3262

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

9.8CVSS9.7AI score0.01013EPSS
Exploits1References1
prion
prion
added 2023/08/29 8:15 p.m.23 views

Sql injection

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

7.5CVSS9.7AI score0.01013EPSS
Exploits1References3Affected Software2
cnnvd
cnnvd
added 2023/08/29 12:0 a.m.7 views

TripSpark VEO SQL注入漏洞

TripSpark VEO is a software solution from TripSpark, Inc. designed for the traffic and transportation sector to manage and optimize the operations of vehicles, equipment, and personnel. A security vulnerability exists in the TripSpark VEO Transportation NovusEDU-2.2.x-XPBB-20201123-184084 version...

9.8CVSS8.6AI score0.01013EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2023/08/29 12:0 a.m.7 views

PT-2023-12172 · Tripspark · Tripspark Veo Transportation

Name of the Vulnerable Software and Affected Versions: TripSpark VEO Transportation versions 2.2.x NovusEDU versions 2.2.x Description: The issue allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL...

9.8CVSS9.4AI score0.01013EPSS
Exploits1References8
cvelist
cvelist
added 2023/08/29 12:0 a.m.34 views

CVE-2021-3262

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

10AI score0.01013EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2023/08/29 12:0 a.m.14 views

CVE-2021-3262

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

7.6AI score0.01013EPSS
Exploits1References1
cve
cve
added 2023/08/29 12:0 a.m.50 views

CVE-2021-3262

CVE-2021-3262 affects TripSpark VEO Transportation (version 2.2.x) and NovusEDU (2.2.x XP_BB-20201123-184084). Root cause: unsafe data inputs in POST body parameters not sanitized server-side, enabling SQL injection in the Student Busing Information search queries. Impact stated as SQL commands c...

9.8CVSS9.6AI score0.01013EPSS
Exploits1References1Affected Software2
packetstorm
packetstorm
added 2021/07/28 12:0 a.m.398 views

TripSpark VEO Transportation SQL Injection

Exploit Title: TripSpark VEO Transportation - 'editOEN' Blind SQL Injection Google Dork: inhtml:"Student Busing Information" Date: 07/27/2021 Exploit Author: Sedric Louissaint @LKn0w Vendor Homepage: https://www.tripspark.com Software Document Link:...

0.5AI score
Exploits0
zdt
zdt
added 2021/07/28 12:0 a.m.101 views

TripSpark VEO Transportation - Blind SQL Injection Vulnerability

Exploit Title: TripSpark VEO Transportation - 'editOEN' Blind SQL Injection Google Dork: inhtml:"Student Busing Information" Exploit Author: Sedric Louissaint @LKn0w Vendor Homepage: https://www.tripspark.com Software Document Link: https://www.tripspark.com/resourcefiles/veo-transportation.pdf...

Exploits0
exploitdb
exploitdb
added 2021/07/28 12:0 a.m.653 views

TripSpark VEO Transportation - Blind SQL Injection

Exploit Title: TripSpark VEO Transportation - 'editOEN' Blind SQL Injection Google Dork: inhtml:"Student Busing Information" Date: 07/27/2021 Exploit Author: Sedric Louissaint @LKn0w Vendor Homepage: https://www.tripspark.com Software Document Link:...

7.4AI score
Exploits0
Rows per page
Query Builder