Skip to main content
CVE-2022-24700 HIGH POC This Week

An issue was discovered in WinAPRS 2.9.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow Winaprs
NVD
CVSS 3.1
7.5
EPSS
1.7%
CVE-2022-1929 HIGH POC PATCH This Week

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the devcert npm package, when an attacker is able to supply arbitrary input to the certificateFor method. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Node.js Devcert
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2022-31460 HIGH POC This Week

Owl Labs Meeting Owl 5.2.0.15 allows attackers to activate Tethering Mode with hard-coded hoothoot credentials via a certain c 150 value. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Meeting Owl Pro Firmware
NVD
CVSS 3.1
7.4
EPSS
3.4%
CVE-2022-32028 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_user.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.9%
CVE-2022-32027 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/index.php?page=manage_car&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32026 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_booking.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
5.3%
CVE-2022-32025 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/view_car.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.5%
CVE-2022-32024 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via car-rental-management-system/booking.php?car_id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.5%
CVE-2022-32022 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via /ip/car-rental-management-system/admin/ajax.php?action=login. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.9%
CVE-2022-32021 HIGH POC This Week

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_movement.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Car Rental Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32018 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=hiring&search=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.5%
CVE-2022-32017 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=bytitle. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32016 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=bycompany. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32015 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=category&search=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.5%
CVE-2022-32014 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=byfunction. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32013 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/category/index.php?view=edit&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.3%
CVE-2022-32012 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/employee/index.php?view=edit&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32011 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32010 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/user/index.php?view=edit&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32008 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/vacancy/index.php?view=edit&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32007 HIGH POC This Week

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/company/index.php?view=edit&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complete Online Job Search System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.5%
CVE-2022-31994 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=sales/view_details&id. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-31992 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=court_rentals/view_court_rental&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-31988 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=reports/daily_services_report&date=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-31986 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=reports/daily_court_rental_report&date=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-31985 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=reports/daily_sales_report&date=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-32006 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/services/view_service.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-32004 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products/manage_product.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-32003 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/courts/view_court.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-32001 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products/view_product.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-32000 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=service_transactions/manage_service_transaction&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-31998 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=service_transactions/view_details&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-31996 HIGH POC This Week

Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=sales/manage_sale&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Badminton Center Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-31984 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/requests/take_action.php?id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.9%
CVE-2022-31983 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/manage_request&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
2.6%
CVE-2022-31982 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/view_request&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
2.0%
CVE-2022-31981 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/view_team&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
2.0%
CVE-2022-31980 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manage_team&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
2.0%
CVE-2022-31975 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.9%
CVE-2022-31974 HIGH POC This Week

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Fire Reporting System
NVD GitHub
CVSS 3.1
7.2
EPSS
4.9%
CVE-2022-31971 HIGH POC This Week

ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simple_chat_bot/admin/?page=responses/view_response&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Chatbot App With Suggestion
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-31970 HIGH POC This Week

ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simple_chat_bot/admin/?page=responses/manage_response&id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Chatbot App With Suggestion
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-31339 HIGH POC This Week

Simple Inventory System v1.0 is vulnerable to SQL Injection via /inventory/login.php. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Simple Inventory System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-30836 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-30835 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-30834 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_manage_account_details.php?booking_id=31&user_id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-30833 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_edit.php?booking=31&user_id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-30832 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_assign.php?booking=31&user_id=. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2022-30831 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection via Wedding-Management/wedding_details.php. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-30830 HIGH POC This Week

Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\feature_edit.php. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Wedding Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
Prev Page 3 of 6 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy