Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

471 matches found

Positive Technologies
Positive Technologiesadded 2026/02/07 12:0 a.m.6 views

PT-2026-6910

Name of the Vulnerable Software and Affected Versions SourceCodester Online Class Record System version 1.0 Description A flaw exists in SourceCodester Online Class Record System 1.0 that allows for SQL injection. The issue is located in the file /admin/subject/controller.php. Manipulating the ID...

9.8CVSS5.4AI score0.00048EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2025/11/13 12:0 a.m.5 views

PT-2025-46879

Name of the Vulnerable Software and Affected Versions D-Link DIR-823G router firmware version DIR823G V1.0.2B05 20181207.bin Description A command injection issue exists in the D-Link DIR-823G router firmware. The timelycheck and sysconf binaries process the /var/system/linux vlan reinit file. Th...

5.4CVSS7.7AI score0.0067EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-24804

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00185EPSS
Exploits1References2
OSV
OSVadded 2025/07/14 7:15 a.m.1 views

CVE-2025-7580

A vulnerability classified as critical was found in code-projects Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/positionsrow.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has bee...

8.8CVSS5.8AI score0.00197EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/07/08 12:0 a.m.1 views

PT-2025-28641 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue was found in the code-projects Chat System. The problem affects an unknown functionality of the file "/user/addmember.php". The manipulation of the ID argument leads to SQL...

8.8CVSS6.8AI score0.00197EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2025/07/01 12:0 a.m.2 views

PT-2025-27557 · Unknown · Campcodes Employee Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Employee Management System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file /mark.php. The manipulation of the ID argument leads to SQL injection. The attack ca...

9.8CVSS7.7AI score0.00277EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2025/06/30 12:0 a.m.2 views

PT-2025-27447 · Unknown · Phpgurukul Student Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Student Record System version 3.2 Description: A critical vulnerability was found in the PHPGurukul Student Record System. This issue affects unknown code of the file /manage-subjects.php. The manipulation of the argument del leads...

8.8CVSS8.9AI score0.00181EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2025/06/29 12:0 a.m.2 views

PT-2025-27377 · Unknown · Sourcecodester Simple Company Website

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Company Website version 1.0 Description: A critical issue was found in the software, affecting an unknown function of the file /admin/clients/manage.php. The manipulation of the ID argument leads to SQL injection. This...

7.2CVSS8AI score0.00199EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2025/06/20 12:0 a.m.4 views

PT-2025-26303 · Unknown · Phpgurukul Directory Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Directory Management System version 2.0 Description: A critical issue was found in the PHPGurukul Directory Management System. This issue affects the /admin/admin-profile.php file and is related to the manipulation of the adminname...

8.8CVSS6.8AI score0.00197EPSS
Exploits1References9
NVD
NVDadded 2025/06/06 11:15 a.m.17 views

CVE-2025-5757

A vulnerability was found in code-projects Traffic Offense Reporting System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /save-reported.php. The manipulation of the argument...

5.4CVSS0.00157EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/06/01 12:0 a.m.3 views

PT-2025-23427 · Unknown · Chaitak-Gorai Blogbook

Name of the Vulnerable Software and Affected Versions: Chaitak-gorai Blogbook versions up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 Description: A critical vulnerability was found in Chaitak-gorai Blogbook, affecting an unknown functionality of the file /post.php of the component GET Parameter...

7.5CVSS7.4AI score0.00223EPSS
Exploits1References12
RedhatCVE
RedhatCVEadded 2025/05/22 7:25 p.m.6 views

CVE-2021-25297

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command...

9CVSS7.3AI score0.81875EPSS
Exploits6References1
GithubExploit
GithubExploitadded 2025/04/11 12:27 p.m.95 views

Exploit for Cross-site Scripting in Ourphp

cve-2023-30212 PoC for CVE-2023-30212 using Docker CVE-2023-...

6.1CVSS6.3AI score0.7516EPSS
Exploits9
Cvelist
Cvelistadded 2025/03/25 4:31 a.m.20 views

CVE-2025-2733 mannaandpoem OpenManus Prompt python_execute.py os command injection

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...

6.5CVSS0.00731EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/02/13 12:0 a.m.1 views

PT-2025-7085 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A SQL Injection issue was found in the /admin/bwdates-reports-details.php file, allowing remote attackers to execute arbitrary code via the todate POST request parameter. Recommendations:...

7.2CVSS8.7AI score0.02651EPSS
Exploits1References7
CVE
CVEadded 2025/02/12 10:0 a.m.57 views

CVE-2025-1190

Code-Projects Job Recruitment 1.0 is affected by a cross-site scripting (XSS) vulnerability in the file /_parse/load_user-profile.php. Multiple connected sources consistently identify the flaw as arising from processing user input in that file, with the vulnerability exploitable remotely over net...

6.1CVSS4AI score0.00277EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologiesadded 2024/11/12 12:0 a.m.3 views

PT-2024-8733 · Timgeyssens · Uiomatic

Name of the Vulnerable Software and Affected Versions: TimGeyssens UIOMatic version 5 Description: A critical vulnerability has been found in the file /src/UIOMatic/wwwroot/backoffice/resources/uioMaticObject.r, which can lead to SQL injection. The attack can be initiated remotely. The exploit ha...

7.2CVSS6.1AI score0.00125EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2024/05/16 12:0 a.m.3 views

PT-2024-33398 · Sourcecodester · Sourcecodester School Intramurals Student Attendance Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester School Intramurals Student Attendance Management System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file /intrams sams/manage student.php. The manipulation of the...

6.5CVSS6.9AI score0.00149EPSS
Exploits1References7
Packet Storm
Packet Stormadded 2024/03/20 12:0 a.m.449 views

Simple Task List 1.0 SQL Injection

Exploit Title: Simple Task List 1.0 - 'status' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/simple-task-list-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/12/SimpleTaskListInPHPWithSourceCode.zip Version: 1.0...

6.5CVSS7.4AI score0.00121EPSS
Exploits3
Positive Technologies
Positive Technologiesadded 2024/02/27 12:0 a.m.3 views

PT-2024-18428 · Sourcecodester · Sourcecodester Free/Open Source Inventory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Free and Open Source Inventory Management System version 1.0 Description: A critical issue affects the processing of the file /app/ajax/search sales report.php, where the manipulation of the customer argument leads to SQL...

9.8CVSS7.1AI score0.00112EPSS
Exploits1References6
Rows per page
Query Builder