CVE-2025-67285

A SQL injection vulnerability was found in the '/cts/admin/?page=zone' file of ITSourcecode COVID Tracking System Using QR-Code v1.0. The reason for this issue is that attackers inject malicious code from the parameter 'id' and use it directly in SQL queries without the need for appropriate...

EUVD-2019-16964

Malware in sbrugna...

EUVD-2019-18317

Malware in sbrugna...

EUVD-2019-16967

Malware in sbrugna...

EUVD-2019-16965

Malware in sbrugna...

EUVD-2019-18315

Malware in sbrugna...

EUVD-2019-18313

Malware in sbrugna...

EUVD-2019-18314

Malware in sbrugna...

EUVD-2019-16968

Malware in sbrugna...

EUVD-2019-16966

Malware in sbrugna...

CVE-2019-7426

XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/linkdownalertConfig.jsp" file in the groupDesc, groupName, groupID, or task parameter...

CVE-2019-8929

The CVE-2019-8929 entry affects Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. It describes a stored/reflective cross-site scripting (XSS) vulnerability in the Administration zone, specifically in the /netflow/jspui/selectDevice.jsp page, exploitable via the GET parameters param and rty...

CVE-2019-8927

An issue was discovered in Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. XSS exists in the Administration zone /netflow/jspui/scheduleConfig.jsp file via these GET parameters: devSrc, emailId, excWeekModify, filterFlag, getFilter, mailReport, mset, popup, repschedule, repType, schDesc,...

CVE-2019-8926

CVE-2019-8926 affects Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. The vulnerability is a reflected cross-site scripting (XSS) in the Admin zone, specifically in /netflow/jspui/popup1.jsp, exploitable via GET parameters bussAlert, customDev, and selSource. The technical details in con...

CVE-2019-8925

An issue was discovered in Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. An Absolute Path Traversal vulnerability in the Administration zone, in /netflow/servlet/CReportPDFServlet via the parameter schFilePath, allows remote authenticated users to bypass intended SecurityManager...

CVE-2019-7426

XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/linkdownalertConfig.jsp" file in the groupDesc, groupName, groupID, or task parameter...

Cross site scripting

XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/linkdownalertConfig.jsp" file in the groupDesc, groupName, groupID, or task parameter...

Cross site scripting

XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/linkdownalertConfig.jsp" file in the autorefTime or graphTypes parameter...

CVE-2019-7427

XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/linkdownalertConfig.jsp" file in the autorefTime or graphTypes parameter...

CVE-2019-7423

XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/editProfile.jsp" file in the userName parameter...