Lucene search
+L

92 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.13 views

CVE-2025-65136

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

6.1CVSS5.5AI score0.00181EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:35 p.m.12 views

CVE-2026-5805

A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contactus.php. Executing a manipulation of the argument Name can lead to sql injection. The attack can be launched remotely. The exploit has been made available...

7.5CVSS7AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/11 2:21 a.m.16 views

CVE-2025-65134

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

6.1CVSS5.6AI score0.00181EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/14 6:30 p.m.5 views

EUVD-2025-209445

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

5.7AI score0.00181EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/14 6:30 p.m.5 views

EUVD-2025-209447

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

6.1CVSS5.8AI score0.00181EPSS
Exploits1References2
NVD
NVD
added 2026/04/14 4:16 p.m.10 views

CVE-2025-65136

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

6.1CVSS0.00181EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.8 views

PT-2026-32658

CVE-2025-65134 In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST param… https://t.co/M90l94mWC9...

5.6AI score0.00181EPSS
Exploits1References3
CVE
CVE
added 2026/04/14 12:0 a.m.13 views

CVE-2025-65134

CVE-2025-65134 affects manikandan580 School-management-system 1.0. A reflected XSS in /studentms/admin/contact-us.php via the email POST parameter is reported. The CVSS 3.1 base metrics show Network attack vector, Low complexity, No privileges, user interaction required, with Confidentiality and ...

6.1CVSS5.7AI score0.00181EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/14 12:0 a.m.32 views

CVE-2025-65134

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

0.00181EPSS
Exploits1References1
CVE
CVE
added 2026/04/14 12:0 a.m.14 views

CVE-2025-65136

Summary: CVE-2025-65136 affects the Manikandan580 School-management-system 1.0. The vulnerability is a reflected XSS in the admin-facing page /studentms/admin/contact-us.php, exploitable via the pagedes POST parameter. The accompanying data from multiple sources (NVD, EUVD-ENISA, CVE lists, and v...

6.1CVSS5.8AI score0.00181EPSS
Exploits1References1
NVD
NVD
added 2026/04/08 9:17 p.m.3 views

CVE-2026-5805

A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contactus.php. Executing a manipulation of the argument Name can lead to sql injection. The attack can be launched remotely. The exploit has been made available...

7.5CVSS0.00254EPSS
Exploits0References5
CVE
CVE
added 2026/04/08 8:30 p.m.10 views

CVE-2026-5805

Code-projects Easy Blog Site (up to version 1.0) contains a SQL injection in /users/contact_us.php where manipulating the Name parameter can trigger database queries remotely. The vulnerability’s exploitability is network-based with low impact on confidentiality, integrity, and availability, and ...

7.5CVSS5.8AI score0.00254EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.21 views

PT-2026-21877

Name of the Vulnerable Software and Affected Versions itsourcecode News Portal Project version 1.0 Description A SQL injection issue exists due to the improper handling of the pagetitle argument in the processing of the /admin/contactus.php file. This allows for remote attacks. The exploit has be...

9.8CVSS7AI score0.00371EPSS
Exploits1References11
EUVD
EUVD
added 2025/12/25 12:30 a.m.6 views

EUVD-2025-205359

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

7.5CVSS7.2AI score0.00381EPSS
Exploits1References7
NVD
NVD
added 2025/12/24 11:15 p.m.4 views

CVE-2025-15073

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

9.8CVSS0.00381EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/24 11:2 p.m.3 views

CVE-2025-15073 itsourcecode Online Frozen Foods Ordering System contact_us.php sql injection

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

7.5CVSS6.6AI score0.00381EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-57628

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00339EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19948

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.00246EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/04 4:34 a.m.6 views

CVE-2025-9814

A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. Impacted is an unknown function of the file /admin/contact-us.php. The manipulation of the argument mobnumber results in sql injection. It is possible to launch the attack remotely. The exploit has been releas...

9.8CVSS7.4AI score0.00384EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/09/03 9:32 p.m.15 views

CVE-2025-9930 1000projects Beauty Parlour Management System contact-us.php sql injection

A security vulnerability has been detected in 1000projects Beauty Parlour Management System 1.0. This impacts an unknown function of the file /admin/contact-us.php. The manipulation of the argument mobnumber leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00419EPSS
Exploits1References4
Rows per page
Query Builder