Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-18521

Malware in sbrugna...

9.8CVSS9.4AI score0.01808EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-47694

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00403EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-32220

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00412EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-46445

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00583EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-7252

Malicious code in bioql PyPI...

7.7CVSS6.6AI score0.00398EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-5893

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00587EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48288

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00656EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-37717

Malicious code in bioql PyPI...

6.3CVSS5.8AI score0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/04 6:31 p.m.15 views

CVE-2025-5604 Campcodes Hospital Management System user-login.php sql injection

A vulnerability was found in Campcodes Hospital Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user-login.php. The manipulation of the argument Username leads to sql injection. The attack may be launched remotely. The exploit ha...

7.5CVSS0.00448EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/05/31 12:0 a.m.7 views

PT-2025-23369 · Sourcecodester · Sourcecodester Php Display Username After Login

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP Display Username After Login version 1.0 Description: A critical vulnerability has been found in the software. The issue affects an unknown function of the file /login.php. Manipulation of the Username argument leads to SQL...

9.8CVSS7.3AI score0.00394EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2025/05/23 5:8 a.m.18 views

CVE-2023-50035

PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection on the Users login panel because of "password" parameter is directly used in the SQL query without any sanitization and the SQL Injection payload being executed...

9.8CVSS8.1AI score0.00629EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:42 p.m.8 views

CVE-2021-31632

b2evolution CMS v7.2.3 was discovered to contain a SQL injection vulnerability via the parameter cfqueryparam in the User login section. This vulnerability allows attackers to execute arbitrary code via a crafted input...

9.8CVSS8.8AI score0.01808EPSS
Exploits1References1
NVD
NVD
added 2025/05/07 3:15 a.m.35 views

CVE-2025-3844

The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to Authentication Bypass in versions 1.9.1 to 7.5.2. This is due to handelajaxreq function not having proper restrictions on the changeusermeta functionality that makes it possible to set a OTP code and subsequently log in...

9.8CVSS0.00528EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/23 12:21 a.m.21 views

CVE-2024-57490

Guangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker can log in to any system account including the system administrator through a logical flaw...

7.7CVSS6.9AI score0.00398EPSS
Exploits0References1
NVD
NVD
added 2025/03/21 2:15 p.m.14 views

CVE-2024-57490

Guangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker can log in to any system account including the system administrator through a logical flaw...

7.7CVSS0.00398EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/21 12:0 a.m.6 views

CVE-2024-57490

Guangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker can log in to any system account including the system administrator through a logical flaw...

7AI score0.00398EPSS
Exploits0References2
CVE
CVE
added 2025/03/21 12:0 a.m.59 views

CVE-2024-57490

CVE-2024-57490 affects Guangzhou Hongfan Technology Co., LTD. iOffice20. The issue is a logic flaw that permits an attacker to log in as any user, including the administrator, effectively bypassing authentication. The vulnerability is tracked across multiple feeds (NVD, Red Hat, CNNVD, CVE List, ...

7.7CVSS6.9AI score0.00398EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/03/21 12:0 a.m.12 views

CVE-2024-57490

Guangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker can log in to any system account including the system administrator through a logical flaw...

0.00398EPSS
Exploits0References2
CVE
CVE
added 2025/03/01 7:24 a.m.68 views

CVE-2025-1638

CVE-2025-1638 - Alloggio Membership (WordPress) Affected software: Alloggio Membership plugin for WordPress, versions up to 1.0.2 (and recurring references show ongoing CVE coverage up to 1.1.x). Root cause: Authentication bypass due to improper user validation in the REST login pathways, specifi...

9.8CVSS6.9AI score0.00587EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/27 7:23 a.m.8 views

CVE-2025-1717 Login Me Now <= 1.7.2 - Authentication Bypass

The Login Me Now plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.7.2. This is due to insecure authentication based on an arbitrary transient name in the 'AutoLogin::listen' function. This makes it possible for unauthenticated attackers to log in an...

8.1CVSS8.1AI score0.00542EPSS
Exploits0References3
Rows per page
Query Builder