CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

RedhatCVE•added 2025/05/22 8:10 p.m.•3 views

CVE-2021-38736

SEMCMS Shop V 1.1 is vulnerable to SQL Injection via AntGlobal.php...

9.8CVSS8.1AI score0.00732EPSS

Exploits1

NVD•added 2024/09/18 3:15 p.m.•9 views

CVE-2024-44542

SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...

9.8CVSS0.28136EPSS

Exploits0References1

CVE•added 2024/09/18 12:0 a.m.•41 views

CVE-2024-44542

CVE-2024-44542 overview (normal mode) Affected software: todesk v1.1 (ToDesk remote desktop software). Vulnerability: SQL injection in the API endpoint /todesk.com/news.html that allows a remote attacker to craft inputs to execute arbitrary code. Root cause is a vulnerable parameter handling in t...

9.8CVSS9AI score0.28136EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/09/18 12:0 a.m.•11 views

CVE-2024-44542

SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...

8.7AI score0.28136EPSS

Exploits0References1

Cvelist•added 2024/09/18 12:0 a.m.•10 views

CVE-2024-44542

SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...

0.28136EPSS

Exploits0References1

NVD•added 2024/04/29 5:15 p.m.•8 views

CVE-2024-33444

SQL injection vulnerability in onethink v.1.1 allows a remote attacker to escalate privileges via a crafted script to the ModelModel.class.php component...

9.8CVSS7.7AI score0.00904EPSS

Exploits1References3

CVE•added 2024/04/29 12:0 a.m.•47 views

CVE-2024-33444

The provided connected sources confirm CVE-2024-33444 affects onethink v1.1, with a SQL injection vulnerability in the ModelModel.class.php component that could allow a remote attacker to escalate privileges. The issue is repeatedly described across NVD/Red Hat/CVE lists and third-party advisorie...

9.8CVSS8.1AI score0.00904EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2024/04/29 12:0 a.m.•16 views

CVE-2024-33444

SQL injection vulnerability in onethink v.1.1 allows a remote attacker to escalate privileges via a crafted script to the ModelModel.class.php component...

8.1AI score0.00904EPSS

Exploits1References3

Cvelist•added 2024/04/29 12:0 a.m.•12 views

CVE-2024-33444

SQL injection vulnerability in onethink v.1.1 allows a remote attacker to escalate privileges via a crafted script to the ModelModel.class.php component...

8AI score0.00904EPSS

Exploits1References3

CVE•added 2023/12/12 12:0 a.m.•33 views

CVE-2023-49563

Summary: CVE-2023-49563 affects Voltronic Power SNMP Web Pro, version 1.1. The issue is a Cross Site Scripting (XSS) vulnerability in the web interface that allows an attacker to execute arbitrary code via a crafted script in a request to the webserver. The description across sources consistently...

6.1CVSS6.1AI score0.00106EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/09/12 12:0 a.m.•8 views

CVE-2023-39073

An issue in SNMP Web Pro v.1.1 allows a remote attacker to execute arbitrary code and obtain senstive information via a crafted request...

7.6AI score0.01673EPSS

Exploits0References1

NVD•added 2022/10/28 4:15 p.m.•8 views

CVE-2021-38731

SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via AntZekou.php...

9.8CVSS0.00732EPSS

Exploits0References2