CVE-2020-10435

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/my-languages.php by adding a question mark ? followed by the payload...

CVE-2025-10435

creationtimestamp| type| source ---|---|--- 2025-09-15 10:29:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyulxlm6pl2t 2025-09-15 11:02:20+00:00| seen| https://gist.github.com/Darkcrai86/cdb6a7c8c31e83c72fe8ed3fcd79e44f...

CVE-2025-10435

A security flaw has been discovered in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/custedit1.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been...

CVE-2024-10435 didi Super-Jacoco triggerEnvCov command injection

A vulnerability was found in didi Super-Jacoco 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /cov/triggerEnvCov. The manipulation of the argument uuid leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2024-10435 didi Super-Jacoco triggerEnvCov command injection

A vulnerability was found in didi Super-Jacoco 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /cov/triggerEnvCov. The manipulation of the argument uuid leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2020-10435

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/my-languages.php by adding a question mark ? followed by the payload...

CVE-2020-10435

The CVE-2020-10435 entry concerns Chadha PHPKB Standard Multi-Language 9. Red Hat AR entries describe a Reflected XSS vulnerability stemming from URI handling in admin/header.php, allowing an attacker to inject scripts by appending a payload after a ? in URIs such as admin/my-languages.php (and r...

CVE-2019-10435

CVE-2019-10435 affects the Jenkins SourceGear Vault Plugin. The vulnerability arises because the plugin transmits configured credentials in plain text within job configuration forms, potentially exposing sensitive data. Several connected sources (GHSA, RH, PT-Security, CNVD, CNVD- etc.) confirm t...

CVE-2016-10435

CVE-2016-10435 is a TOCTOU vulnerability in some Qualcomm QTEE syscall handlers affecting Android versions prior to the 2018-04-05 security patch level (and prior to patches included in the 2018-04-01/05 Android bulletins). The issue is documented as enabling potential compromises in confidential...

OpenJPEG Denial of Service Vulnerability (CNVD-2016-10435)

OpenJPEG library is written in C language open source JPEG 2000 codec . OpenJPEG 2.1.2 suffers from a null pointer access vulnerability in the convert.c:2226jp2 imagetopnm function, which can lead to a denial of service via a constructed j2k file...

SuSE 11.3 Security Update : mutt (SAT Patch Number 10435)

The mutt mail client has been updated to fix a heap-based buffer overflow in muttsubstrdup. CVE-2014-9116 Additionally, a patch has been added to allow users to override the 'From' address when executing mutt in batch mode. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...