Lucene search
K

90 matches found

NVD
NVD
added 2026/03/06 1:15 p.m.7 views

CVE-2018-25161

Warranty Tracking System 11.06.3 contains an SQL injection vulnerability that allows attackers to execute arbitrary SQL queries by injecting malicious code through the txtCustomerCode, txtCustomerName, and txtPhone POST parameters in SearchCustomer.php. Attackers can submit crafted SQL statements...

8.8CVSS0.00225EPSS
Exploits0References2
CVE
CVE
added 2026/03/06 12:18 p.m.13 views

CVE-2018-25161

Warranty Tracking System 11.06.3 contains an SQL injection in SearchCustomer.php that allows bypassing input validation via POST parameters txtCustomerCode, txtCustomerName, and txtPhone. The vulnerability enables attackers to execute arbitrary SQL statements (e.g., UNION SELECT) to exfiltrate se...

8.8CVSS6.1AI score0.00225EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/06 12:18 p.m.29 views

CVE-2018-25161 Warranty Tracking System 11.06.3 SQL Injection via SearchCustomer.php

Warranty Tracking System 11.06.3 contains an SQL injection vulnerability that allows attackers to execute arbitrary SQL queries by injecting malicious code through the txtCustomerCode, txtCustomerName, and txtPhone POST parameters in SearchCustomer.php. Attackers can submit crafted SQL statements...

8.8CVSS0.00225EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/06 12:18 p.m.4 views

CVE-2018-25161 Warranty Tracking System 11.06.3 SQL Injection via SearchCustomer.php

Warranty Tracking System 11.06.3 contains an SQL injection vulnerability that allows attackers to execute arbitrary SQL queries by injecting malicious code through the txtCustomerCode, txtCustomerName, and txtPhone POST parameters in SearchCustomer.php. Attackers can submit crafted SQL statements...

8.8CVSS6.1AI score0.00225EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/06 12:18 p.m.6 views

CVE-2018-25161

Warranty Tracking System 11.06.3 contains an SQL injection vulnerability that allows attackers to execute arbitrary SQL queries by injecting malicious code through the txtCustomerCode, txtCustomerName, and txtPhone POST parameters in SearchCustomer.php. Attackers can submit crafted SQL statements...

8.8CVSS6.1AI score0.00225EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.6 views

PT-2026-23673

Warranty Tracking System 11.06.3 contains an SQL injection vulnerability that allows attackers to execute arbitrary SQL queries by injecting malicious code through the txtCustomerCode, txtCustomerName, and txtPhone POST parameters in SearchCustomer.php. Attackers can submit crafted SQL statements...

8.8CVSS6.1AI score0.00225EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.8 views

Warranty Tracking System SQL注入漏洞

The Warranty Tracking System is a warranty record management system developed by Warranty Tracking Company. Version 11.06.3 of the Warranty Tracking System contains an SQL injection vulnerability. This vulnerability stems from the txtCustomerCode, txtCustomerName, and txtPhone parameters, which m...

8.8CVSS6.1AI score0.00225EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.3 views

PT-2025-47956

Rooting Tesla's Linux-based infotainment system typically involves exploiting software vulnerabilities, like improper access controls in diagnostic interfaces e.g., CVE-2022-42008. Enthusiasts connect via Ethernet ports, use tools to gain a reverse shell, and set up persistence by modifying...

6.8AI score
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-35594

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00366EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-56209

Malicious code in bioql PyPI...

5.3CVSS9.1AI score0.00313EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-41744

Malicious code in bioql PyPI...

8.1CVSS8.6AI score0.00357EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-26839

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00382EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-56208

Malicious code in bioql PyPI...

6.5CVSS9.1AI score0.00355EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:21 a.m.6 views

CVE-2023-51495

Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7...

6.5CVSS6.9AI score0.00355EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:6 a.m.4 views

CVE-2023-51496

Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7...

5.3CVSS6.9AI score0.00313EPSS
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/04/29 12:45 p.m.9 views

Reinforcing resilience with financial assurance: Breach protection matters now more than ever

Introducing Rapid7’s value-added Breach Protection Warranty that delivers confidence, clarity, and coverage when it matters most. Life’s old adage often applies in security: Hope for the best, prepare for the worst. In today’s threat landscape, even the best-prepared organizations can’t guarantee...

7.4AI score
Exploits0
OSV
OSV
added 2025/01/07 7:15 a.m.2 views

CVE-2024-11725

The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the updateWcWarrantySettings function in all versions up to, and including, 3.7.6. This makes it...

8.8CVSS5.8AI score0.00495EPSS
Exploits0References6
NVD
NVD
added 2024/12/21 12:15 a.m.12 views

CVE-2023-31280

An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The AirVantage Warranty Checker is updated to no longer return the IMEI and Serial Number in addition to the warranty status when the Serial Number or IME...

5.3CVSS0.00366EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/20 11:41 p.m.25 views

CVE-2023-31280 Exposure of Sensitive Information to an Unauthorized Actor

An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The AirVantage Warranty Checker is updated to no longer return the IMEI and Serial Number in addition to the warranty status when the Serial Number or IME...

5.3CVSS0.00366EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/20 11:41 p.m.12 views

CVE-2023-31280 Exposure of Sensitive Information to an Unauthorized Actor

An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The AirVantage Warranty Checker is updated to no longer return the IMEI and Serial Number in addition to the warranty status when the Serial Number or IME...

5.3CVSS6.9AI score0.00366EPSS
Exploits0References1
Rows per page
Query Builder