CVE-2026-10299

A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of the argument delid causes improper control of resource identifiers. The attack can be initiated remotely. The...

CVE-2026-10299

A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of the argument delid causes improper control of resource identifiers. The attack can be initiated remotely. The...

CVE-2026-10299 code-projects Online Hospital Management System viewdoctortimings.php resource injection

A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of the argument delid causes improper control of resource identifiers. The attack can be initiated remotely. The...

CVE-2025-10299

creationtimestamp| type| source ---|---|--- 2025-10-15 11:35:16+00:00| seen| https://gist.github.com/Darkcrai86/781685a85634623e5d15c6fa10cdec00...

CVE-2025-10299

The WPBifröst – Instant Passwordless Temporary Login Links plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the ctlcreatelink AJAX action in all versions up to, and including, 1.0.7. This makes it possible for authenticated attackers, with...

WordPress WPBifröst – Instant Passwordless Temporary Login Links plugin <= 1.0.7 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vulnerability

Missing Authorization to Authenticated Subscriber+ Privilege Escalation vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin WPBifröst – Instant Passwordless Temporary Login Links versions = 1.0.7...

CVE-2018-10299

creationtimestamp| type| source ---|---|--- 2025-06-25 21:02:17+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lshj3cckzt24 2026-06-19 12:53:14+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/87ce2c05-99c4-42f1-965e-b4799e83dc9d...

CVE-2024-10299

creationtimestamp| type| source ---|---|--- 2024-10-23 21:35:28+00:00| seen| https://t.me/cvedetector/8765...

CVE-2024-10299 PHPGurukul Medical Card Generation System Managecard View Detail Page view-card-detail.php sql injection

A vulnerability classified as critical was found in PHPGurukul Medical Card Generation System 1.0. This vulnerability affects unknown code of the file /admin/view-card-detail.php of the component Managecard View Detail Page. The manipulation of the argument viewid leads to sql injection. The atta...

CVE-2019-10299

Jenkins CloudCoreo DeployTime Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2019-10299

Jenkins CloudCoreo DeployTime Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2019-10299

The CVE-2019-10299 entry pertains to the Jenkins CloudCoreo DeployTime Plugin. Analysis of connected documents confirms the vulnerability involves credentials stored unencrypted in the plugin’s global configuration on the Jenkins master, specifically in the file com.cloudcoreo.plugins.jenkins.Clo...

CVE-2019-10299

Jenkins CloudCoreo DeployTime Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2018-10299

Beauty Ecosystem Coin (BEC) smart-contract vulnerability: batchTransfer suffers an integer overflow when calculating the amount as the product of cnt and _value, enabling an attacker to inflate balances for two _receivers with a large _value. The issue is documented as batchOverflow and was obser...

CVE-2016-10299

CVE-2016-10299 is an elevation of privilege vulnerability in Qualcomm closed‑source components used by Android, affecting the Android kernel. Reported impact is high/critical (CVSS v3 base score 9.8) with network attack vector, no user interaction required, and likely requires no privileges. The ...

CVE-2017-10299

CVE-2017-10299 affects Oracle Agile PLM within Oracle Supply Chain Products Suite (subcomponent: Security). Affected versions are 9.3.5 and 9.3.6. The vulnerability allows a low-privileged attacker with network access over HTTP to read a subset of Oracle Agile PLM data (unauthorized read access)....

IGSS ODBC Server Multiple Uninitialized Pointer Denial of Service Vulnerability

The host is running IGSS ODBC Server and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodigssodbcserverdosvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ IGSS ODBC Server Multiple Uninitialized Pointer Denial of Service Vulnerability Authors: Veerendra G.G Copyrigh...