Lucene search
K

158 matches found

RedhatCVE
RedhatCVE
added 2026/01/16 12:24 a.m.12 views

CVE-2025-70891

A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...

6.1CVSS5.8AI score0.00216EPSS
Exploits2References1
NVD
NVD
added 2026/01/15 9:16 p.m.5 views

CVE-2025-70892

Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...

9.8CVSS0.00414EPSS
Exploits2References2
OSV
OSV
added 2026/01/15 9:16 p.m.22 views

CVE-2025-70892

Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...

9.8CVSS5.8AI score0.00414EPSS
Exploits2References2
NVD
NVD
added 2026/01/15 9:16 p.m.10 views

CVE-2025-70890

A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...

6.1CVSS0.00216EPSS
Exploits2References2
NVD
NVD
added 2026/01/15 9:16 p.m.3 views

CVE-2025-70891

A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...

6.1CVSS0.00216EPSS
Exploits2References2
OSV
OSV
added 2026/01/15 9:16 p.m.5 views

CVE-2025-70890

A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...

6.1CVSS5.8AI score0.00216EPSS
Exploits2References2
OSV
OSV
added 2026/01/15 9:16 p.m.5 views

CVE-2025-70891

A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...

6.1CVSS5.8AI score0.00216EPSS
Exploits2References2
EUVD
EUVD
added 2026/01/15 12:0 a.m.5 views

EUVD-2026-2691

A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...

6.1CVSS5.3AI score0.00216EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2026/01/15 12:0 a.m.2 views

CVE-2025-70891

A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...

6.1CVSS5.4AI score0.00216EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2026/01/15 12:0 a.m.4 views

CVE-2025-70892

Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...

7.5AI score0.00414EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2026/01/15 12:0 a.m.3 views

CVE-2025-70890

A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...

5.4AI score0.00216EPSS
Exploits2References2
EUVD
EUVD
added 2026/01/15 12:0 a.m.6 views

EUVD-2026-2701

Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...

9.8CVSS7.3AI score0.00414EPSS
Exploits2References4
CVE
CVE
added 2026/01/15 12:0 a.m.8 views

CVE-2025-70890

The CVE-2025-70890 entry describes a stored XSS in Cyber Cafe Management System v1.0, via the username parameter of add-users.php. An authenticated attacker can inject JavaScript that is stored and executed when the affected page is viewed. The CVSS 3.1 vector: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

6.1CVSS5.4AI score0.00216EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.5 views

PT-2026-3114

Name of the Vulnerable Software and Affected Versions Cyber Cafe Management System version 1.0 Description A stored cross-site scripting XSS issue exists. An authenticated attacker can inject arbitrary JavaScript code into the username parameter through the ''/add-users.php'' endpoint. The inject...

6.1CVSS5.9AI score0.00216EPSS
Exploits2References5
EUVD
EUVD
added 2026/01/15 12:0 a.m.5 views

EUVD-2026-2684

A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...

6.1CVSS5.2AI score0.00216EPSS
Exploits2References3
CVE
CVE
added 2026/01/15 12:0 a.m.12 views

CVE-2025-70891

CVE-2025-70891 is a stored XSS vulnerability in Phpgurukul Cyber Cafe Management System v1.0, affecting the add-users.php endpoint’s uadd parameter. The issue arises from insufficient sanitization/encoding of user input, allowing an authenticated attacker to persistently store arbitrary JavaScrip...

6.1CVSS5.4AI score0.00216EPSS
Exploits2References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/15 12:0 a.m.4 views

CVE-2025-70892

Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...

9.8CVSS6AI score0.00414EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.6 views

PT-2026-3115

Name of the Vulnerable Software and Affected Versions Phpgurukul Cyber Cafe Management System version 1.0 Description The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the /add-users.php API endpoint, leading to a stored cross-site...

6.1CVSS6.3AI score0.00216EPSS
Exploits2References5
CVE
CVE
added 2026/01/15 12:0 a.m.12 views

CVE-2025-70892

CVE-2025-70892 affects Phpgurukul Cyber Cafe Management System v1.0. A SQL Injection flaw exists in the user management module via the add-users.php endpoint, specifically in the username parameter where input is not properly validated. This vulnerability is described across multiple sources (NVD...

9.8CVSS7.5AI score0.00414EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2026/01/15 12:0 a.m.21 views

CVE-2025-70890

A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...

0.00216EPSS
Exploits2References2
Rows per page
Query Builder