Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
portal vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-5278
A vulnerability, which was classified as critical, was found in SourceCodester Engineers Online Portal 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument username/password leads to sql injection. It is possible to launch the attack remote...
Engineers Online Portal Project Engineers Online Portal 1.0
9.8
CVSSv3
CVE-2023-5279
A vulnerability has been found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file my_classmates.php. The manipulation of the argument teacher_class_student_id leads to sql injection. The...
Engineers Online Portal Project Engineers Online Portal 1.0
9.8
CVSSv3
CVE-2023-5280
A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file my_students.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. T...
Engineers Online Portal Project Engineers Online Portal 1.0
9.8
CVSSv3
CVE-2023-4737
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Hedef Tracking Admin Panel allows SQL Injection.This issue affects Admin Panel: prior to 1.2.
Hedeftakip Admin Portal
9.8
CVSSv3
CVE-2023-4490
The WP Job Portal WordPress plugin prior to 2.0.6 does not sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users
Wpjobportal Wp Job Portal
9.8
CVSSv3
CVE-2023-43468
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote malicious user to execute arbitrary code via the login.php component.
Online Job Portal Project Online Job Portal 2020
9.8
CVSSv3
CVE-2023-43469
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote malicious user to execute arbitrary code via the ForPass.php component.
Online Job Portal Project Online Job Portal 2020
9.8
CVSSv3
CVE-2023-28801
An Improper Verification of Cryptographic Signature in the SAML authentication of the Zscaler Admin UI allows a Privilege Escalation.This issue affects Admin UI: from 6.2 prior to 6.2r.
Zscaler Zscaler Internet Access Admin Portal
9.8
CVSSv3
CVE-2023-38035
A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an malicious user to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration.
Ivanti Mobileiron Sentry
1 Metasploit module
4 Github repositories
1 Article
9.8
CVSSv3
CVE-2023-39807
N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 exists to contain a SQL injection vulnerability via the a_passwd parameter at /portal/user-register.php.
Nvki Intelligent Broadband Subscriber Gateway 3.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975
CVE-2024-2961
CVE-2024-20380
XML injection
HTML injection
CVE-2024-29204
CVE-2023-51795
memory leak
CVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »