CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

NVD•added 2025/09/03 9:15 p.m.•1 views

CVE-2025-9928

A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted element is an unknown function of the file /viewcategory.php. Performing manipulation of the argument t1 results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS0.00075EPSS

Exploits1References4

Vulnrichment•added 2025/09/03 9:2 p.m.•1 views

CVE-2025-9928 projectworlds Travel Management System viewcategory.php sql injection

7.5CVSS6.9AI score0.00075EPSS

Exploits1References4

CNNVD•added 2025/09/03 12:0 a.m.•1 views

Projectworlds Travel management System SQL注入漏洞

Projectworlds Travel management System is a travel management system from Projectworlds India. A SQL injection vulnerability exists in Projectworlds Travel management System version 1.0, which originates from an incorrect manipulation of parameter t1 in file /viewcategory.php resulting in a SQL...

9.8CVSS7.8AI score0.00075EPSS

Exploits1References4

Positive Technologies•added 2025/09/03 12:0 a.m.•1 views

PT-2025-35836

Name of the Vulnerable Software and Affected Versions: projectworlds Travel Management System version 1.0 Description: A security flaw exists in projectworlds Travel Management System. The issue involves SQL injection in the /viewcategory.php file through manipulation of the t1 argument. This...

9.8CVSS7.4AI score0.00075EPSS

Exploits1References9

Packet Storm•added 2012/06/08 12:0 a.m.•23 views

CMS Wizard SQL Injection

Title : CMS Wizard SQL Injection Vulnerbility Date : 7th June 2012 Author : Mr.Gh0st [email protected] Vendor : http://www.cmswizard.co.uk/ Dork : intext:Powered by CMS Wizard inurl:shop.php?viewcategory= Tested On :Arch Linux P0c : /shop.php?viewcategory=104' Demo Site :...

0.7AI score

Exploits0

seebug.org•added 2010/05/18 12:0 a.m.•17 views

JE CMS version 1.1 SQL Injection Vulnerability

No description provided by source. ========================================================================================================================================================== o JE CMS SQL Injection Vulnerability Software : JE CMS version 1.1 Vendor : http://joenasejes.cz.cc/ Author...

7.1AI score

Exploits0

exploitpack•added 2009/12/31 12:0 a.m.•20 views

Joomla! Component com_portfol - SQL Injection

Joomla! Component comportfol - SQL Injection || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ team wlhaan hacker | | // | | |...

0.6AI score

Exploits0

Prion•added 2009/05/20 7:30 p.m.•13 views

Sql injection

SQL injection vulnerability in the GridSupport GS Ticket System comgsticketsystem component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a viewCategory action to index.php...

7.5CVSS9.1AI score0.00032EPSS

Exploits1References3

Prion•added 2009/02/27 11:30 a.m.•15 views

Sql injection

SQL injection vulnerability in index.cfm in CF Shopkart 5.2.2 allows remote attackers to execute arbitrary SQL commands via the Category parameter in a ViewCategory action...

7.5CVSS8.7AI score0.00485EPSS

Exploits1References3Affected Software1

Prion•added 2009/02/10 1:30 a.m.•10 views

Sql injection

SQL injection vulnerability in the Portfol comportfol 1.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the vcatid parameter in a viewcategory action to index.php...

7.5CVSS9AI score0.00362EPSS

Exploits1References2Affected Software1

Exploit DB•added 2008/08/03 12:0 a.m.•40 views

Joomla! Component EZ Store Remote - Blind SQL Injection

!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...

7.4AI score

Exploits0

Packet Storm•added 2008/07/09 12:0 a.m.•15 views

joomlamygallery-sql.txt

H-T Team HouSSamix & ToXiC350 ===================================================================== Joomla Component mygallery Remote SQL Injection Exploit ===================================================================== AUTHOR : HouSSamix From H-T TeaM Script : mygallery Joomla Component...

7.4AI score

Exploits0

exploitpack•added 2008/07/01 12:0 a.m.•15 views

Joomla! Component mygallery - cid SQL Injection

Joomla! Component mygallery - cid SQL Injection H-T Team HouSSamix & ToXiC350 ===================================================================== Joomla Component mygallery Remote SQL Injection Exploit ===================================================================== AUTHOR : HouSSamix From...

0.7AI score

Exploits0

Prion•added 2008/02/12 1:0 a.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a viewcategory action...

4.3CVSS6.1AI score0.0029EPSS

Exploits1References4Affected Software1

CVE•added 2008/02/12 12:0 a.m.•39 views

CVE-2008-0688

CVE-2008-0688 describes a cross-site scripting (XSS) vulnerability in the Smartscript Domain Trader 2.0 product, specifically in catalog.php. The flaw allows remote attackers to inject arbitrary web script or HTML via the id parameter in a viewcategory action. The connected records confirm the af...

4.3CVSS5.7AI score0.0029EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by