CVE-2025-13289 1000projects Design & Development of Student Database Management System SubjectDetails.php sql injection

A vulnerability was detected in 1000projects Design & Development of Student Database Management System 1.0. Affected is an unknown function of the file /TeacherLogin/Academics/SubjectDetails.php. The manipulation of the argument SubCode results in sql injection. The attack may be performed from...

CVE-2025-13289 1000projects Design & Development of Student Database Management System SubjectDetails.php sql injection

A vulnerability was detected in 1000projects Design & Development of Student Database Management System 1.0. Affected is an unknown function of the file /TeacherLogin/Academics/SubjectDetails.php. The manipulation of the argument SubCode results in sql injection. The attack may be performed from...

Linux Distros Unpatched Vulnerability : CVE-2020-13289

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. In certain cases an invalid username could be accepted when 2FA is activate...

CVE-2024-13289

creationtimestamp| type| source ---|---|--- 2025-01-09 21:15:48+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfdlxqdnez2e 2025-01-10 17:05:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1184...

CVE-2024-13289

CVE-2024-13289 affects the Drupal Cookiebot + GTM module. The issue is an improper neutralization of input during web page generation, enabling Cross-Site Scripting (XSS). Affected versions are 0.0.0 up to, but not including, 1.0.18. The recommended remediation is to upgrade to version 1.0.18 or ...

CVE-2024-13289 Cookiebot + GTM - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-055

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Cookiebot + GTM allows Cross-Site Scripting XSS.This issue affects Cookiebot + GTM: from 0.0.0 before 1.0.18...

Synology Router Manager (SRM) 1.1.x Multiple Vulnerabilities (Synology-SA-18:48) - Unreliable Remote Version Check

Synology Router Manager SRM is prone to multiple information exposure vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2020-13289

CVE-2020-13289 affects GitLab prior to 13.1.10, 13.2.8 and 13.3.4. The root cause is an issue where, in some cases, an invalid username could be accepted when two-factor authentication is enabled. Impact is described as a potential login bypass (low/partial confidentiality and integrity impact wi...

CVE-2019-13289

creationtimestamp| type| source ---|---|--- 2019-07-04 23:59:55+00:00| published-proof-of-concept| https://t.me/cveNotify/212...

CVE-2019-13289

CVE-2019-13289 affects Xpdf 4.01.01, with a use-after-free vulnerability in JBIG2Stream::close() (JBIG2Stream.cc). Exploitation is demonstrated by crafting a PDF that can be processed by pdftoppm to trigger the flaw. Connected sources consistently describe the vulnerability as a memory misreferen...

CVE-2018-13289

CVE-2018-13289 affects Synology Router Manager (SRM) and is tied to SYNO.FolderSharing.List. The SRM versions before 1.1.7-6941-2 expose sensitive information via folder_path and real_path parameters. The vulnerability description notes information disclosure (confidentiality impact), with CVSS d...

CVE-2017-13289

In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a write size mismatch. This could lead to a local escalation of privileges where the user can start an activity with system privileges, with no additional execution privileges needed. User interaction is...

CVE-2017-13289

CVE-2017-13289 affects Android (versions 6.0–8.1). The issue arises in RttManager.java during writeToParcel and createFromParcel, where a write size mismatch enables a permission bypass that can escalate privileges locally. A local attacker can start an activity with system privileges without add...