CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2021/04/11 12:0 a.m.•4 views

Unauthorized Access Vulnerability in web-based network management system of Xinhua San Technologies Co.

Xinhua San Technology Co., Ltd. is committed to becoming a trusted partner for customers' business innovation and digital transformation. An unauthorized access vulnerability exists in the web-based network management system of Xinhua San Technologies Limited, which can be exploited by attackers ...

6.8AI score

CNNVD•added 2021/02/17 12:0 a.m.•3 views

Soar Cloud System HR Code Issue Vulnerability

Soar Cloud System HR is an application from Soar Cloud China. It provides a human resources system. A code issue vulnerability exists in Soar Cloud System that arises from improper design or implementation during code development for a web-based system or product...

9.8CVSS7.4AI score0.01969EPSS

Exploits0References3

CNNVD•added 2021/02/11 12:0 a.m.•5 views

SOURCEFORGE Adminer Code Issue Vulnerability

SOURCEFORGE Adminer is an application from the American SOURCEFORGE community. It provides database management in a single PHP file. A code issue vulnerability exists in SOURCEFORGE Adminer that arises from improper design or implementation during code development of a web-based system or product...

7.2CVSS7.3AI score0.90461EPSS

Exploits3References8

CNVD•added 2020/09/29 12:0 a.m.•3 views

MediaWiki code issue vulnerability (CNVD-2020-58046)

MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. It can be used to deploy in-house knowledge management and content management systems. A code issue vulnerability exists in MediaWiki. The vulnerability stems from ...

6.1CVSS7.1AI score0.01091EPSS

CNVD•added 2020/08/17 12:0 a.m.•5 views

PostgreSQL Code Issues Vulnerabilities

PostgreSQL is a free object-relational database management system from the PostgreSQL organization. The system supports most of the SQL standards and provides many other features, such as foreign keys, triggers, views, and so on. A code issue vulnerability exists in PostgreSQL. The vulnerability...

7.1CVSS8AI score0.02235EPSS

CNVD•added 2020/05/08 12:0 a.m.•3 views

Tecnick.com TCExam Cross-Site Scripting Vulnerability (CNVD-2020-28047)

Tecnick.com TCExam is a Web-based open source e-exam system from Tecnick.com, UK. The system is mainly used for online exams and more. A security vulnerability exists in Tecnick.com TCExam, which can be exploited by attackers to cause cross-site scripting XSS attacks...

5.4CVSS6AI score0.00666EPSS

CNVD•added 2020/05/08 12:0 a.m.•4 views

Tecnick.com TCExam Cross-Site Scripting Vulnerability

6.1CVSS6AI score0.01132EPSS

CNVD•added 2020/05/08 12:0 a.m.•3 views

Tecnick.com TCExam Cross-Site Scripting Vulnerability (CNVD-2020-28046)

7.4CVSS6AI score0.00827EPSS

CNVD•added 2020/05/08 12:0 a.m.•3 views

Tecnick.com TCExam Cross-Site Scripting Vulnerability (CNVD-2020-28048)

5.4CVSS6AI score0.00666EPSS

Packet Storm•added 2020/05/05 12:0 a.m.•99 views

webERP 4.15.1 Backup Disclosure

Exploit Title: webERP 4.15.1 - Unauthenticated Backup File Access Date: 2020-05-01 Author: Besim ALTINOK Vendor Homepage: http://www.weberp.org Software Link: https://sourceforge.net/projects/web-erp/ Version: v4.15.1 Tested on: Xampp Credit: İsmail BOZKURT...

7.4AI score

CNVD•added 2020/04/30 12:0 a.m.•3 views

Subrion CMS Authorization Issues Vulnerability

Subrion CMS is a PHP-based content management system CMS from the Subrion team. The system can be integrated into a website and supports a variety of extensions plugins and more. An authorization issue vulnerability exists in Subrion CMS version 4.2.1. The vulnerability stems from a lack of...

6.5CVSS7.1AI score0.00916EPSS

Exploits1

CNVD•added 2020/04/28 12:0 a.m.•2 views

dom4j code problem vulnerability

dom4j is an open source framework for processing XML . A code issue vulnerability exists in dom4j versions prior to 2.1.3. The vulnerability stems from an improperly designed or implemented code development process for a web-based system or product. No detailed vulnerability details are provided ...

9.8CVSS8.7AI score0.07269EPSS

CNVD•added 2020/04/09 12:0 a.m.•3 views

File Upload Vulnerability in PHPOA System of Guilin Tiansheng Zhichuang Information Technology Co.

PHPOA using PHP + MYSQL open source language , Guilin Born Wisdom Information Technology Co., Ltd. has been committed to application management software development at the grass-roots level . Guilin Tiansheng Zhichuang Information Technology Co., Ltd. PHPOA system file upload vulnerability,...

7.1AI score

CNVD•added 2020/03/27 12:0 a.m.•2 views

Accenture Mercury Code Issue Vulnerability

Accenture Mercury is a microservices rapid development platform. A code issue vulnerability exists in Accenture Mercury versions prior to 1.12.28. The vulnerability arises from an improperly designed or implemented code development process for a web-based system or product. No detailed...

9.8CVSS7.1AI score0.01176EPSS

CNVD•added 2020/03/16 12:0 a.m.•3 views

GitLab Code Issue Vulnerability (CNVD-2020-19601)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A code issue vulnerability exists in GitLab Enterprise...

9.8CVSS7AI score0.01185EPSS

CNVD•added 2020/03/13 12:0 a.m.•3 views

Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-18338)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflective cross-site scripting vulnerability exists in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9. The...

4.8CVSS6AI score0.00611EPSS

CNVD•added 2020/02/11 12:0 a.m.•4 views

Atlassian Jira Code Issue Vulnerability

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in Atlassian Jira. The vulnerability stems from an improperly designed or implemented code...

7.8CVSS7.2AI score0.00367EPSS