Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2026/03/16 2:17 p.m.1 views

CVE-2015-20121

Next Click Ventures RealtyScript 4.0.2 contains SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting arbitrary SQL code through the GET parameter 'uid' in /admin/users.php and the POST parameter 'agent' in /admin/mailer.php. Attackers can...

9.8CVSS0.0027EPSS
Exploits1References3
CNNVD
CNNVDadded 2026/03/16 12:0 a.m.2 views

RealtyScript SQL注入漏洞

RealtyScript is a real estate website management system developed by RealtyScript Inc. Version 4.0.2 of RealtyScript has a SQL injection vulnerability, which stems from improper cleaning of the uid and agent parameters. This vulnerability could allow unverified attackers to inject arbitrary SQL...

9.8CVSS6AI score0.0027EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/03/15 6:34 p.m.19 views

CVE-2015-20121 RealtyScript 4.0.2 SQL Injection via u_id and agent Parameters

Next Click Ventures RealtyScript 4.0.2 contains SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting arbitrary SQL code through the GET parameter 'uid' in /admin/users.php and the POST parameter 'agent' in /admin/mailer.php. Attackers can...

8.8CVSS0.0027EPSS
Exploits1References3
OSV
OSVadded 2025/06/01 9:15 a.m.0 views

CVE-2025-5400

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been classified as critical. Affected is an unknown function of the file /user.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql injection. It is...

9.8CVSS5.7AI score0.00223EPSS
Exploits1References4
OSV
OSVadded 2025/01/09 10:15 a.m.1 views

CVE-2025-0347

A vulnerability was found in code-projects Admission Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php of the component Login. The manipulation of the argument uid leads to sql injection. The attack can be initiated remotely. Th...

9.8CVSS5.8AI score0.00097EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/01/09 12:0 a.m.3 views

Code-Projects Admission Management System 注入漏洞

Code-Projects Admission Management System is a Code-Projects open source enrollment management system. Code-Projects Admission Management System version 1.0 suffers from an injection vulnerability, which stems from an SQL injection in the parameter uid...

9.8CVSS7.9AI score0.00097EPSS
Exploits1References5
Cvelist
Cvelistadded 2022/06/16 6:26 p.m.10 views

CVE-2020-35597

Victor CMS 1.0 is vulnerable to SQL injection via cid parameter of admineditcomment.php, pid parameter of admineditpost.php, uid parameter of adminedituser.php, and edit parameter of adminupdatecategories.php...

9.1AI score0.00946EPSS
Exploits1References3
Rows per page
Query Builder