18 matches found
CVE-2019-25350
creationtimestamp| type| source ---|---|--- 2026-02-20 04:00:18+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfb7usy3f32i...
CVE-2021-25350
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user information via log...
CVE-2025-1520
PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-1520 PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability
PostHog ClickHouse Table Functions SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...
CVE-2022-25350
All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...
CVE-2024-25350
creationtimestamp| type| source ---|---|--- 2024-02-28 23:27:01+00:00| seen| https://t.me/ctinow/195970 2025-04-22 16:03:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12882...
CVE-2024-25350
SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters...
CVE-2024-25350
SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters...
CVE-2024-25350
CVE-2024-25350 affects PHPGurukul Zoo Management System 1.0, with a SQL Injection vulnerability in /zms/admin/edit-ticket.php exploitable via the tickettype and tprice parameters. The primary advisory cites a CVSS v3.1 base score of 9.8 (CRITICAL) with NETWORK attackVector, LOW attackComplexity, ...
CVE-2024-25350
SQL Injection vulnerability in /zms/admin/edit-ticket.php in PHPGurukul Zoo Management System 1.0 via tickettype and tprice parameters...
CVE-2023-25350
CVE-2023-25350 affects Faveo Helpdesk versions 1.0–1.11.1. The vulnerability is a SQL injection in the login flow caused by input data from the frontend to the backend being controllable, allowing injection through the login box. The available documents consistently describe the issue and its imp...
CVE-2023-25350
Faveo Helpdesk 1.0-1.11.1 is vulnerable to SQL Injection. When the user logs in through the login box, he has no judgment on the validity of the user's input data. The parameters passed from the front end to the back end are controllable, which will lead to SQL injection...
CVE-2022-25350
creationtimestamp| type| source ---|---|--- 2023-01-27 00:33:50+00:00| seen| https://t.me/cibsecurity/56939 2025-04-01 15:32:29+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9915...
CVE-2022-25350
All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...
CVE-2022-25350
CVE-2022-25350 affects the Node.js module puppet-facter . The vulnerability is a command injection in the getFact function caused by improper input sanitization . It is a local attack with high impact on confidentiality, integrity, and availability (CVSS 3.1 base 7.8). Affected: all versions (no ...
CVE-2022-25350
All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...
CVE-2022-25350
All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...
CVE-2021-25350
CVE-2021-25350 concerns an Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3. The issue allows physically proximate attackers to access user information via logs. Affected component is Samsung Account; impact reported as partial confidentiality loss with no integrity...