18 matches found
CVE-2025-13072
creationtimestamp| type| source ---|---|--- 2025-12-10 07:20:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7mjilzwg22o 2025-12-10 07:45:14+00:00| seen| https://gist.github.com/Darkcrai86/e7850f58bee7a2ef527a7a893f643079...
CVE-2024-13072
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-services.php of the component Customer Detail Handler. The manipulation of the argument sids leads t...
CVE-2019-13072
Stored XSS in the Filters page Name field in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page...
CVE-2018-13072
The mintToken function of a smart contract implementation for Coffeecoin COFFEE, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value...
CVE-2024-13072
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-services.php of the component Customer Detail Handler. The manipulation of the argument sids leads t...
CVE-2024-13072 1000 Projects Beauty Parlour Management System Customer Detail add-customer-services.php sql injection
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-services.php of the component Customer Detail Handler. The manipulation of the argument sids leads t...
CVE-2024-13072 1000 Projects Beauty Parlour Management System Customer Detail add-customer-services.php sql injection
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-services.php of the component Customer Detail Handler. The manipulation of the argument sids leads t...
CVE-2024-13072
CVE-2024-13072 affects 1000 Projects Beauty Parlour Management System 1.0, specifically the Customer Detail Handler component. The vulnerability arises from manipulating the argument sids[] in the file /admin/add-customer-services.php, leading to SQL injection. Exploitation can be remote, and pub...
Qnap QTS Cross-site Scripting (CVE-2017-13072)
Cross-site scripting XSS vulnerability in App Center in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20171213, QTS 4.3.4 build 20171223, and their earlier versions could allow remote attackers to inject Javascript code. This plugin only works with Tenable.ot. Please visit...
CVE-2020-13072
...
CVE-2020-13072
CVE-2020-13072 entry is rejected/not used and does not represent an active vulnerability.
CVE-2019-13072
Stored XSS in the Filters page Name field in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page...
CVE-2019-13072
The CVE-2019-13072 entry describes a Stored XSS vulnerability in ZoneMinder 1.32.3, specifically in the Filters page (Name field). The underlying issue is a stored script that can be embedded and executed in the browser of any user visiting that page. Multiple connected sources (NVD/NASL/Nessus/N...
CVE-2019-13072
Stored XSS in the Filters page Name field in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page...
CVE-2019-13072
Stored XSS in the Filters page Name field in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page...
CVE-2019-13072
Stored XSS in the Filters page Name field in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page...
CVE-2018-13072
CVE-2018-13072 affects the Coffeecoin (COFFEE) Ethereum token. The mintToken function in Coffeecoin’s smart contract contains an integer overflow that enables the contract owner to set any user’s balance to an arbitrary value. Public sources in the connected records confirm the vulnerability desc...
CVE-2017-13072
The CVE-2017-13072 entry describes a Cross-site scripting (XSS) vulnerability in QNAP QTS App Center affecting QTS 4.2.6 (build 20171208), 4.3.3 (build 20171213), 4.3.4 (build 20171223), and earlier versions. The underlying issue is an XSS flaw that could allow remote attackers to inject Javascri...