CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7 matches found

OSV•added 2023/01/16 12:30 p.m.•12 views

GHSA-85GF-WR67-F83W curupira is vulnerable to SQL injection

A vulnerability classified as critical has been found in prodigasistemas curupira up to 0.1.3. Affected is an unknown function of the file app/controllers/curupira/passwordscontroller.rb. The manipulation leads to sql injection. Upgrading to version 0.1.4 is able to address this issue. The name o...

9.8CVSS9.9AI score0.00744EPSS

Exploits0References7

Github Security Blog•added 2023/01/16 12:30 p.m.•26 views

curupira is vulnerable to SQL injection

A vulnerability classified as critical has been found in prodigasistemas curupira up to 0.1.3. Affected is an unknown function of the file app/controllers/curupira/passwordscontroller.rb. The manipulation leads to sql injection. Upgrading to version 0.1.4 is able to address this issue. The name o...

9.8CVSS9.6AI score0.00744EPSS

Exploits0References7Affected Software1

NVD•added 2023/01/16 12:15 p.m.•8 views

CVE-2015-10053

A vulnerability classified as critical has been found in prodigasistemas curupira up to 0.1.3. Affected is an unknown function of the file app/controllers/curupira/passwordscontroller.rb. The manipulation leads to sql injection. Upgrading to version 0.1.4 is able to address this issue. The patch ...

9.8CVSS7AI score0.00744EPSS

Exploits0References4

Prion•added 2023/01/16 12:15 p.m.•6 views

Sql injection

A vulnerability classified as critical has been found in prodigasistemas curupira up to 0.1.3. Affected is an unknown function of the file app/controllers/curupira/passwordscontroller.rb. The manipulation leads to sql injection. Upgrading to version 0.1.4 is able to address this issue. The patch ...

7.5CVSS7.8AI score0.00744EPSS

Exploits0References4Affected Software1

CVE•added 2023/01/16 11:58 a.m.•41 views

CVE-2015-10053

CVE-2015-10053 affects prodigasistemas curupira up to 0.1.3. The vulnerability lies in an unknown function within the file app/controllers/curupira/passwords_controller.rb , whose manipulation enables a SQL injection . A fix is available in version 0.1.4 , with patch hash 93a9a77896bb66c949acb8e6...

9.8CVSS7.9AI score0.00744EPSS

Exploits0References4Affected Software1

Cvelist•added 2023/01/16 11:58 a.m.•12 views

CVE-2015-10053 prodigasistemas curupira passwords_controller.rb sql injection

A vulnerability classified as critical has been found in prodigasistemas curupira up to 0.1.3. Affected is an unknown function of the file app/controllers/curupira/passwordscontroller.rb. The manipulation leads to sql injection. Upgrading to version 0.1.4 is able to address this issue. The patch ...

5.5CVSS10AI score0.00744EPSS

Exploits0References4

RubySec•added 2023/01/16 12:0 a.m.•25 views

curupira is vulnerable to SQL injection

A vulnerability classified as critical has been found in prodigasistemas curupira up to 0.1.3. Affected is an unknown function of the file app/controllers/curupira/passwordscontroller.rb. The manipulation leads to sql injection. Upgrading to version 0.1.4 is able to address this issue. The name o...

9.8CVSS4.7AI score0.00744EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by