15 matches found
EUVD-2025-29410
Malicious code in bioql PyPI...
CVE-2025-29410
A cross-site scripting XSS vulnerability in the component /contact.php of Hospital Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the txtEmail parameter...
CVE-2025-29410
A cross-site scripting XSS vulnerability in the component /contact.php of Hospital Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the txtEmail parameter...
Petrol Pump Management Software v1.0 - Remote Code Execution (RCE)
Exploit Title: Petrol Pump Management Software v1.0 - Remote Code Execution RCE Date: 02/04/2024 Exploit Author: Sandeep Vishwakarma Vendor Homepage: https://www.sourcecodester.com Software Link:https://www.sourcecodester.com/php/17180/petrol-pump-management-software-free-download.html Version:...
Petrol Pump Management Software v1.0 - Remote Code Execution Vulnerability
Exploit Title: Petrol Pump Management Software v1.0 - Remote Code Execution RCE Exploit Author: Sandeep Vishwakarma Vendor Homepage: https://www.sourcecodester.com Software Link:https://www.sourcecodester.com/php/17180/petrol-pump-management-software-free-download.html Version: v1.0 Tested on:...
CVE-2020-29410
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2023-29410
creationtimestamp| type| source ---|---|--- 2023-04-19 02:40:50+00:00| seen| https://t.me/cibsecurity/62427...
CVE-2023-29410
A CWE-20: Improper Input Validation vulnerability exists that could allow an authenticated attacker to gain the same privilege as the application on the server when a malicious payload is provided over HTTP for the server to execute...
CVE-2023-29410
CVE-2023-29410 involves Schneider Electric Conext Gateway and an input validation error (CWE-20). The connected sources identify vulnerable versions as Conext Gateway v1.16 Build 004 and earlier, with an authenticated attacker able to escalate to the same privileges as the application on the serv...
CVE-2022-29410
creationtimestamp| type| source ---|---|--- 2022-04-28 20:24:29+00:00| seen| https://t.me/cibsecurity/41595...
CVE-2022-29410
Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...
CVE-2022-29410 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Authenticated SQL Injection (SQLi) vulnerability
Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...
CVE-2022-29410
CVE-2022-29410 corresponds to a SQL injection in WordPress plugin Hermit (Hermit 音乐播放器)
29410.u.proapkmod.com Cross Site Scripting vulnerability OBB-1419822
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
CVE-2020-29410
CVE-2020-29410 is rejected/not used per the Initial Description.