Lucene search
+L

11 matches found

redhatcve
redhatcve
added 2026/01/14 11:19 p.m.10 views

CVE-2023-54340

WorkOrder CMS 0.1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login by manipulating username and password parameters. Attackers can inject malicious SQL queries using techniques like OR '1'='1' and stacked queries to access database information or...

8.8CVSS8.3AI score0.00296EPSS
Exploits0References1
nvd
nvd
added 2026/01/13 11:16 p.m.5 views

CVE-2023-54340

WorkOrder CMS 0.1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login by manipulating username and password parameters. Attackers can inject malicious SQL queries using techniques like OR '1'='1' and stacked queries to access database information or...

8.8CVSS0.00296EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/01/13 10:52 p.m.2 views

CVE-2023-54340 WorkOrder CMS 0.1.0 - SQL Injection

WorkOrder CMS 0.1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login by manipulating username and password parameters. Attackers can inject malicious SQL queries using techniques like OR '1'='1' and stacked queries to access database information or...

8.8CVSS7.8AI score0.00296EPSS
Exploits0References3
osv
osv
added 2026/01/13 10:52 p.m.4 views

CVE-2023-54340 WorkOrder CMS 0.1.0 - SQL Injection

WorkOrder CMS 0.1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login by manipulating username and password parameters. Attackers can inject malicious SQL queries using techniques like OR '1'='1' and stacked queries to access database information or...

8.8CVSS6.1AI score0.00296EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/01/13 12:0 a.m.4 views

WorkOrder CMS SQL注入漏洞

WorkOrder CMS is a content management system for managing and scheduling work orders by Roman B Individual Developer. A SQL injection vulnerability exists in WorkOrder CMS version 0.1.0 that stems from unvalidated username and password parameters, which could allow an unauthenticated attacker to...

8.8CVSS5.9AI score0.00296EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/01/13 12:0 a.m.10 views

PT-2026-2430

Name of the Vulnerable Software and Affected Versions WorkOrder CMS version 0.1.0 Description WorkOrder CMS version 0.1.0 has a SQL injection issue. An unauthenticated attacker can bypass login by manipulating the username and password parameters. Attackers can inject malicious SQL queries, such ...

8.8CVSS8AI score0.00296EPSS
Exploits0References5
zdt
zdt
added 2023/03/23 12:0 a.m.274 views

WorkOrder CMS 0.1.0 - SQL Injection Vulnerability

Exploit Title: WorkOrder CMS 0.1.0 - SQL Injection Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/romzes13/WorkOrderCMS Software Link: https://github.com/romzes13/WorkOrderCMS/archive/refs/tags/v0.1.0.zip Version: 0.1.0 Tested on: Linux Auth Bypass: username:' or '1'='1...

6.8AI score
Exploits0
exploitdb
exploitdb
added 2023/03/23 12:0 a.m.164 views

WorkOrder CMS 0.1.0 - SQL Injection

Exploit Title: WorkOrder CMS 0.1.0 - SQL Injection Date: Sep 22, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/romzes13/WorkOrderCMS Software Link: https://github.com/romzes13/WorkOrderCMS/archive/refs/tags/v0.1.0.zip Version: 0.1.0 Tested on: Linux Auth Bypass: username...

7.4AI score
Exploits0
zdt
zdt
added 2022/09/23 12:0 a.m.247 views

WorkOrder CMS 0.1.0 Cross Site Scripting / SQL Injection Vulnerabilities

Exploit Title: WorkOrder CMS 0.1.0 Cross-Site Scripting XSS Date: Sep 22, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/romzes13/WorkOrderCMS Software Link: https://github.com/romzes13/WorkOrderCMS/archive/refs/tags/v0.1.0.zip Version: 0.1.0 Payload:...

Exploits0
packetstorm
packetstorm
added 2022/09/22 12:0 a.m.238 views

WorkOrder CMS 0.1.0 Cross Site Scripting

Exploit Title: WorkOrder CMS 0.1.0 Cross-Site Scripting XSS Date: Sep 22, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/romzes13/WorkOrderCMS Software Link: https://github.com/romzes13/WorkOrderCMS/archive/refs/tags/v0.1.0.zip Version: 0.1.0 Tested on: Linux Payload:...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2022/09/22 12:0 a.m.290 views

WorkOrder CMS 0.1.0 SQL Injection

Exploit Title: WorkOrder CMS 0.1.0 SQLI Date: Sep 22, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/romzes13/WorkOrderCMS Software Link: https://github.com/romzes13/WorkOrderCMS/archive/refs/tags/v0.1.0.zip Version: 0.1.0 Tested on: Linux Auth Bypass: username:' or '1'='...

0.3AI score
Exploits0
Rows per page
Query Builder