7 matches found
CVE-2019-25503
PHPads 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the bannerID parameter in click.php3. Attackers can submit crafted bannerID values using SQL comment syntax and functions like extractvalue...
CVE-2019-25503 PHPads 2.0 SQL Injection via click.php3 bannerID
PHPads 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the bannerID parameter in click.php3. Attackers can submit crafted bannerID values using SQL comment syntax and functions like extractvalue...
CVE-2026-25503
creationtimestamp| type| source ---|---|--- 2026-02-03 21:28:47+00:00| seen| Telegram/QyiRqtL2R4d4vg7zYENEdPZVU2AdSnNDVrNACiRJXNSwRc...
CVE-2024-25503
Cross Site Scripting XSS vulnerability in Advanced REST Client v.17.0.9 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted script to the edit details parameter of the New Project function...
CVE-2021-25503
Improper input validation vulnerability in HDCP prior to SMR Nov-2021 Release 1 allows attackers to arbitrary code execution...
CVE-2024-25503
creationtimestamp| type| source ---|---|--- 2024-09-06 06:24:41+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8465...
CVE-2021-25503
CVE-2021-25503 is an improper input validation vulnerability in Samsung HDCP prior to SMR Nov-2021 Release 1 that enables arbitrary code execution. Affected component: HDCP; root cause: input validation weakness. Local attack vector with low complexity and no authentication required (per CVSS). I...