142 matches found
PT-2025-42500
Name of the Vulnerable Software and Affected Versions Ilevia EVE X1 Server firmware versions through 4.7.18.0.eden Description The software contains a reflected cross-site scripting XSS issue in the index.php file. An unauthenticated attacker can leverage this to execute arbitrary code. The vendo...
CVE-2025-11476 SourceCodester Simple E-Commerce Bookstore index.php sql injection
A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument loginusername leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...
EUVD-2009-1068
Malware in sbrugna...
EUVD-2006-3828
Malware in sbrugna...
EUVD-2018-2164
Malware in sbrugna...
EUVD-2003-1165
Malware in sbrugna...
EUVD-2006-2573
Malware in sbrugna...
EUVD-2008-5788
Malware in sbrugna...
EUVD-2018-10585
Malware in sbrugna...
EUVD-2025-22302
Malicious code in bioql PyPI...
EUVD-2024-53639
Malicious code in bioql PyPI...
PT-2025-33145 · Unknown · Lepszy Bip
Name of the Vulnerable Software and Affected Versions: Lepszy BIP affected versions not specified Description: Lepszy BIP is susceptible to a Reflected Cross-Site Scripting XSS issue. Insufficient input validation within the index.php form allows for the execution of arbitrary JavaScript code in ...
The vulnerability of the index.php file of the WeGIA web manager allows attackers to perform cross-site scripting attacks.
The vulnerability of the index.php file of the WeGIA web manager is related to the failure to protect the structure of the web page when processing the erro parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...
CVE-2025-6310 PHPGurukul Emergency Ambulance Hiring Portal index.php sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument Message leads to sql injection. The attack may be launched remotely...
CVE-2025-5628
CVE-2025-5628 affects SourceCodester Food Menu Manager 1.0. The vulnerability lies in the Add Menu Handler’s file, specifically the /index.php, where manipulation of the name/description parameter enables a cross-site scripting (XSS) attack. The issue can be triggered remotely and the exploit has...
CVE-2025-3883
eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this...
CVE-2025-3883 eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability
eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this...
PT-2025-17685 · Echarge · Echarge
Name of the Vulnerable Software and Affected Versions: eCharge Hardy Barth cPH2 affected versions not specified Description: The issue is related to a command injection remote code execution problem. It affects the index.php file. Recommendations: At the moment, there is no information about a...
CVE-2025-1743 zyx0814 Pichome index.php path traversal
A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown part of the file /index.php?mod=textviewer. The manipulation of the argument src leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed t...
CVE-2025-1213
A vulnerability was found in pihome-shc PiHome 1.77. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument $SERVER'PHPSELF' leads to cross site scripting. The attack may be launched remotely. The exploit has...