CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Openenergymonitor: >> Emoncms >> 10.1.2 Security Vulnerabilities

CVE-2025-22992

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project >= 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions.

CVSS Score

9.8

EPSS Score

0.001

Published

2025-02-06

CVE-2021-26716

Modules/input/Views/schedule.php in Emoncms through 10.2.7 allows XSS via the node parameter.

CVSS Score

6.1

EPSS Score

0.002

Published

2021-02-21

Page 1

Vulnerabilities

Vulnerable Software

Openenergymonitor: >> Emoncms >> 10.1.2 Security Vulnerabilities

Products

Pricing

Contact Us