CVE-2022-32125

74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting XSS vulnerability via the path /job...

CVE-2025-32125

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in silvasoft Silvasoft boekhouden silvasoft-boekhouden allows SQL Injection.This issue affects Silvasoft boekhouden: from n/a through = 3.0.6...

CVE-2025-32125 WordPress Silvasoft boekhouden Plugin <= 3.0.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in silvasoft Silvasoft boekhouden allows SQL Injection. This issue affects Silvasoft boekhouden: from n/a through 3.0.1...

WordPress Silvasoft boekhouden Plugin <= 3.0.5 - SQL Injection vulnerability

SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Silvasoft boekhouden versions = 3.0.5...

CVE-2024-32125

CVE-2024-32125 (BA Book Everything) is an authenticated SQL Injection vulnerability in the BA Book Everything plugin (

CVE-2024-32125 WordPress BA Book Everything plugin <= 1.6.4 - Auth. SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Booking Algorithms BA Book Everything.This issue affects BA Book Everything: from n/a through 1.6.4...

CVE-2024-32125 WordPress BA Book Everything plugin <= 1.6.4 - Auth. SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Booking Algorithms BA Book Everything.This issue affects BA Book Everything: from n/a through 1.6.4...

WordPress BA Book Everything Plugin <= 1.6.4 is vulnerable to SQL Injection

Software BA Book Everything Type Plugin Vulnerable versions = 1.6.4 Fixed in 1.6.5 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-32125 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID d47407126364 Credits Thanh Nam Tran Required privilege Contributor...

CVE-2023-32125

Cross-Site Request Forgery CSRF vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...

CVE-2023-32125 WordPress Multi Rating Plugin <= 5.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...

CVE-2023-32125

CVE-2023-32125 affects the WordPress plugin Daniel Powney Multi Rating (versions

WordPress Multi Rating Plugin <= 5.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software Multi Rating Type Plugin Vulnerable versions = 5.0.6 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-32125 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 619f441acc2a Credits yuyudhn Required privile...

CVE-2022-32125

creationtimestamp| type| source ---|---|--- 2022-06-23 20:29:39+00:00| seen| https://t.me/cibsecurity/44983...

CVE-2022-32125

CVE-2022-32125 concerns 74cmsSE v3.5.1 with a reflective XSS via the /job path. The vulnerability stems from insufficient data validation/filtering of user-supplied input, enabling injection of JavaScript into the client. Affected product is 74cmsSE (PHP/MySQL-based recruitment system); no explic...

VLC media player RealText subtitle file ParseRealText buffer overflow

Added: 12/01/2008 CVE: CVE-2008-5036 BID: 32125 OSVDB: 49809 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem A buffer overflow vulnerability in the ParseRealText function allows command execution when a user opens a media fi...

MailEnable IMAPD (2.34/2.35) Login Request Buffer Overflow

MailEnable's IMAP server contains a buffer overflow vulnerability in the Login command. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MailEnable IMAPD 2.34/2.35 Login Request Buffer Overflow'...