EUVD-2024-22544

Malicious code in bioql PyPI...

Akeles Out of Office Assistant for Jira 安全漏洞

Akeles Out of Office Assistant for Jira is an application from Akeles Singapore for the Jira platform. A security vulnerability exists in Akeles Out of Office Assistant for Jira version 4.0.1, which originates from the Jira fullName parameter and is susceptible to cross-site scripting attacks...

CVE-2025-5602

A vulnerability, which was classified as critical, was found in Campcodes Hospital Management System 1.0. Affected is an unknown function of the file /admin/registration.php. The manipulation of the argument fullname leads to sql injection. It is possible to launch the attack remotely. The exploi...

CampCodes Hospital Management System 注入漏洞

CampCodes Hospital Management System is a hospital management system from CampCodes, Inc. An injection vulnerability exists in CampCodes Hospital Management System version 1.0, which is caused by a SQL injection due to incorrect manipulation of the parameter fullname/username in the file...

CVE-2024-5395

A vulnerability was found in itsourcecode Online Student Enrollment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file listofinstructor.php. The manipulation of the argument FullName leads to sql injection. The attack may be initiated remotely. The...

CVE-2020-11457

pfSense before 2.4.5 has stored XSS in systemusermanageraddprivs.php in the WebGUI via the descr parameter aka full name of a user...

SourceCodester Employee Management System 安全漏洞

SourceCodester Employee Management System is a SourceCodester open source php-based system for employee performance management. A security vulnerability exists in SourceCodester Employee Management System version 1.0, which stems from an incorrect manipulation of the parameter Full Name that can...

SourceCodester Profile Registration without Reload Refresh 跨站脚本漏洞

SourceCodester Profile Registration without Reload Refresh is a SourceCodester open source application. A cross-site scripting vulnerability exists in SourceCodester Profile Registration without Reload Refresh version 1.0, which stems from the parameter fullname in the file add.php that can lead ...

Online Student Enrollment System SQL注入漏洞

Online Student Enrollment System is an online student enrollment system by Lyndon Bermoy, an individual developer. Online Student Enrollment System version 1.0 suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-e...

CVE-2024-2065

A vulnerability was found in SourceCodester Barangay Population Monitoring System up to 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /endpoint/update-resident.php. The manipulation of the argument fullname leads to cross site scripting. The...

CVE-2024-25208

Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. This vulnerabiity allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

Cross site scripting

Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. This vulnerabiity allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2024-25208

Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. This vulnerabiity allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

Restaurant POS System Cross-Site Scripting Vulnerability

Restaurant POS System is a full-featured Restaurant POS System project based on the Restaurant POS System project by Martin Mbithi Nzilani Individual Developer. A cross-site scripting vulnerability exists in Restaurant POS System version 1.0, which stems from the parameter Full Name in the file...

CVE-2023-7059

A vulnerability was found in SourceCodester School Visitor Log e-Book 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file log-book.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely...

CVE-2022-25114

Event Management v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the fullname parameter under register.php...

Magnolia CMS 代码注入漏洞

Magnolia CMS is an application of the Swiss company Magnolia. provides a website building framework Magnolia CMS suffers from a security vulnerability that can be exploited by attackers to execute arbitrary code via a carefully crafted payload with the full name parameter entered...

PHPGurukul Daily Expense Tracker System 跨站脚本漏洞

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a cross-site scripting vulnerability that originates from the user-profile.php Full Name parameter. No details of the vulnerability are available at this time...

Egavilanmedia User Registration & Login System Cross-Site Scripting Vulnerability

Egavilanmedia User Registration & Login System is a management platform for user registration and login from Egavilanmedia, USA. A cross-site scripting vulnerability exists in EGavilanMedia User Registration and Login System With Admin Panel 1.0. The vulnerability stems from the full name paramet...

CVE-2020-35252

Cross Site Scripting XSS vulnerability via the 'Full Name' parameter in the User Registration section of User Registration & Login System with Admin Panel 1.0...