Lucene search
K

11468 matches found

CNNVD
CNNVD
added 2025/10/09 12:0 a.m.2 views

Projectworlds Gate Pass Management System SQL注入漏洞

Projectworlds Gate Pass Management System is a gate management system for Projectworlds. A SQL injection vulnerability exists in Projectworlds Gate Pass Management System version 1.0, which stems from an incorrect manipulation of the parameter fullname in the file /add-pass.php, which could lead ...

9.8CVSS7.8AI score0.00395EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/10/09 12:0 a.m.4 views

Code-Projects Courier Management System 安全漏洞

Courier Management System is a courier management system. The Courier Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Shippername in the file /add-courier.php. An attacker can exploit th...

9.8CVSS7AI score0.00359EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/10/09 12:0 a.m.2 views

Code-Projects Voting System 跨站脚本漏洞

Code-Projects Voting System is a Code-Projects open source election system. A cross-site scripting vulnerability exists in Code-Projects Voting System version 1.0, which stems from incorrect manipulation of the parameters Firstname/Lastname/Platform in the file /admin/votersadd.php, and could lea...

6.1CVSS4.5AI score0.00356EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.6 views

PT-2025-41371

Name of the Vulnerable Software and Affected Versions Slider Revolution plugin for WordPress versions prior to 6.7.38 Description The Slider Revolution plugin for WordPress is susceptible to unauthorized access and modification of data because of a missing capability check on several functions...

6.5CVSS6AI score0.00346EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.7 views

PT-2025-41455

Name of the Vulnerable Software and Affected Versions code-projects Courier Management System version 1.0 Description A flaw exists in code-projects Courier Management System 1.0. This issue is related to an unknown functionality within the /add-courier.php file. Manipulation of the Shippername...

6.5CVSS6.4AI score0.00359EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.5 views

PT-2025-41463

Name of the Vulnerable Software and Affected Versions ProjectWorlds Gate Pass Management System version 1.0 Description A SQL injection issue exists in the handling of the fullname parameter within the /add-pass.php script. Manipulation of this parameter can allow an attacker to inject malicious...

7.5CVSS7.5AI score0.00395EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2025/10/08 11:39 p.m.3 views

SUSE CVE-2022-50532

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix possible resource leaks in mpt3sastransportportadd In mpt3sastransportportadd, if sasrphyadd returns error, sasrphyfree needs be called to free the resource allocated in sasenddevicealloc. Otherwise a kernel...

5.5CVSS6.4AI score0.00143EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/10/08 11:32 p.m.9 views

CVE-2025-11512 code-projects Voting System voters_add.php cross site scripting

A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/votersadd.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has...

5.3CVSS0.00356EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/08 11:32 p.m.5 views

EUVD-2025-33276

A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/votersadd.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has...

5.3CVSS5.3AI score0.00356EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/10/08 11:32 p.m.4 views

CVE-2025-11512 code-projects Voting System voters_add.php cross site scripting

A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/votersadd.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has...

5.3CVSS5.5AI score0.00356EPSS
Exploits1References5
CVE
CVE
added 2025/10/08 11:32 p.m.12 views

CVE-2025-11512

CVE-2025-11512 affects code-projects Voting System 1.0. The issue is a cross-site scripting vulnerability in the file /admin/voters_add.php caused by improper handling of the Firstname/Lastname/Platform parameters. It can be exploited remotely and the exploit has been made public. Affected versio...

6.1CVSS4.1AI score0.00356EPSS
Exploits1References5Affected Software1
SUSE CVE
SUSE CVE
added 2025/10/08 11:30 p.m.5 views

SUSE CVE-2023-53674

In the Linux kernel, the following vulnerability has been resolved: clk: Fix memory leak in devmclknotifierregister devmclknotifierregister allocates a devres resource for clk notifier but didn't register that to the device, so the notifier didn't get unregistered on device detach and the allocat...

3.3CVSS6.4AI score0.00132EPSS
Exploits0References19
NVD
NVD
added 2025/10/08 11:15 p.m.7 views

CVE-2025-11511

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

9.8CVSS0.00359EPSS
Exploits1References5
OSV
OSV
added 2025/10/08 11:15 p.m.5 views

CVE-2025-11511

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

9.8CVSS5.8AI score0.00359EPSS
Exploits1References5
OSV
OSV
added 2025/10/08 11:15 p.m.3 views

CVE-2025-11509

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/productadd.php. Performing manipulation of the argument prodname results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

9.8CVSS5.8AI score
Exploits0References5
NVD
NVD
added 2025/10/08 11:15 p.m.4 views

CVE-2025-11509

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/productadd.php. Performing manipulation of the argument prodname results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

9.8CVSS0.00359EPSS
Exploits1References5
OSV
OSV
added 2025/10/08 11:15 p.m.2 views

CVE-2025-11508

A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/votersadd.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed publicly and...

9.8CVSS5.5AI score0.00401EPSS
Exploits1References5
CVE
CVE
added 2025/10/08 11:2 p.m.14 views

CVE-2025-11511

CVE-2025-11511 affects the code-projects E-Commerce Website 1.0, specifically the file /pages/supplier_add.php. The vulnerability arises from insufficient validation/manipulation protection of the supp_email parameter, allowing SQL injection and enabling remote exploitation. Multiple sources note...

9.8CVSS6.6AI score0.00359EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/08 11:2 p.m.2 views

CVE-2025-11511 code-projects E-Commerce Website supplier_add.php sql injection

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS6.6AI score0.00359EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/08 11:2 p.m.8 views

CVE-2025-11511 code-projects E-Commerce Website supplier_add.php sql injection

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS0.00359EPSS
Exploits1References5
Rows per page
Query Builder