Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-10468

Malware in sbrugna...

9.8CVSS9.2AI score0.02335EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-10035

Malware in sbrugna...

9.8CVSS9.4AI score0.00988EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:8 p.m.5 views

CVE-2020-18544

SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php"...

9.8CVSS9AI score0.02335EPSS
Exploits1
NVD
NVD
added 2022/05/16 2:15 p.m.20 views

CVE-2021-42897

A remote command execution RCE vulnerability was found in FeMiner wms V1.0 in /wms/src/system/datarec.php. The $POSTrname is directly passed into the $mysqlstr and is executed by exec...

9.8CVSS0.02384EPSS
Exploits1References1
NVD
NVD
added 2021/08/27 8:15 p.m.11 views

CVE-2020-18106

The GET parameter "id" in WMS v1.0 is passed without filtering, which allows attackers to perform SQL injection...

9.8CVSS0.00988EPSS
Exploits1References1
Prion
Prion
added 2021/08/27 8:15 p.m.11 views

Sql injection

The GET parameter "id" in WMS v1.0 is passed without filtering, which allows attackers to perform SQL injection...

7.5CVSS9.8AI score0.00988EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/08/27 7:10 p.m.12 views

CVE-2020-18106

The GET parameter "id" in WMS v1.0 is passed without filtering, which allows attackers to perform SQL injection...

9.9AI score0.00988EPSS
Exploits1References1
NVD
NVD
added 2021/07/12 8:15 p.m.9 views

CVE-2020-18544

SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php"...

9.8CVSS0.02335EPSS
Exploits1References1
Prion
Prion
added 2021/07/12 8:15 p.m.11 views

Sql injection

SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php"...

7.5CVSS9.9AI score0.02335EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/07/12 7:39 p.m.29 views

CVE-2020-18544

CVE-2020-18544 affects WMS v1.0, where a SQL injection in chkuser.php via the username parameter allows remote attackers to execute arbitrary code. Root cause: improper handling of user input in the login/component path leads to SQL injection. Documented impact indicates potential arbitrary code ...

9.8CVSS9.9AI score0.02335EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/07/12 7:39 p.m.16 views

CVE-2020-18544

SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php"...

10AI score0.02335EPSS
Exploits1References1
Rows per page
Query Builder