11448 matches found
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
CVE-2025-70891
A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...
CVE-2025-70891
A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...
EUVD-2026-2691
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
Phpgurukul Cyber Cafe Management System 安全漏洞
Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a SQL injection vulnerability that stems from the username parameter of the add-users.php endpoint not adequately validating user input, no details of the vulnerability are available at...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002246)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002246 advisory. Race condition in the IPC object implementation in the Linux kernel through 4.2.3 allows local users to gain privileges by triggering an ipcaddid call that leads to...
CVE-2025-70892
Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...
CVE-2025-70892
Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
CVE-2025-70891
A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...
PHPGurukul Cyber Cafe Management System 安全漏洞
Cyber Cafe Management System is an internet cafe management system. A cross-site scripting vulnerability exists in Cyber Cafe Management System that stems from the username parameter of the add-users.php endpoint not adequately handling the input, no details of the vulnerability are available at...
CVE-2025-70890
The CVE-2025-70890 entry describes a stored XSS in Cyber Cafe Management System v1.0, via the username parameter of add-users.php. An authenticated attacker can inject JavaScript that is stored and executed when the affected page is viewed. The CVSS 3.1 vector: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...
PT-2026-3114
Name of the Vulnerable Software and Affected Versions Cyber Cafe Management System version 1.0 Description A stored cross-site scripting XSS issue exists. An authenticated attacker can inject arbitrary JavaScript code into the username parameter through the ''/add-users.php'' endpoint. The inject...
EUVD-2026-2684
A stored cross-site scripting XSS vulnerability exists in Phpgurukul Cyber Cafe Management System v1.0 within the user management module. The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the add-users.php endpoint. An authenticated...
CVE-2025-70891
CVE-2025-70891 is a stored XSS vulnerability in Phpgurukul Cyber Cafe Management System v1.0, affecting the add-users.php endpoint’s uadd parameter. The issue arises from insufficient sanitization/encoding of user input, allowing an authenticated attacker to persistently store arbitrary JavaScrip...
PT-2026-3116
Name of the Vulnerable Software and Affected Versions Phpgurukul Cyber Cafe Management System version 1.0 Description The application does not properly validate user-supplied input in the username parameter. This occurs within the user management module, specifically at the /add-users.php API...
CVE-2025-70892
Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...
PT-2026-3115
Name of the Vulnerable Software and Affected Versions Phpgurukul Cyber Cafe Management System version 1.0 Description The application does not properly sanitize or encode user-supplied input submitted via the uadd parameter in the /add-users.php API endpoint, leading to a stored cross-site...
CVE-2025-70892
CVE-2025-70892 affects Phpgurukul Cyber Cafe Management System v1.0. A SQL Injection flaw exists in the user management module via the add-users.php endpoint, specifically in the username parameter where input is not properly validated. This vulnerability is described across multiple sources (NVD...