Lucene search
K

142 matches found

Vulnrichment
Vulnrichment
added 2025/02/12 5:31 p.m.14 views

CVE-2025-1213 pihome-shc PiHome index.php cross site scripting

A vulnerability was found in pihome-shc PiHome 1.77. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument $SERVER'PHPSELF' leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.1CVSS3.8AI score0.00461EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/12/31 4:24 p.m.21 views

CVE-2024-13074 PHPGurukul Land Record System index.php cross site scripting

A vulnerability classified as problematic has been found in PHPGurukul Land Record System 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument searchdata leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS0.00291EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/12/31 12:0 a.m.3 views

PHPGurukul Land Record System 安全漏洞

PHPGurukul Land Record System is a land management system from PHPGurukul. A security vulnerability exists in PHPGurukul Land Record System version 1.0, which stems from the parameter searchdata in the file /index.php that leads to cross-site scripting...

5.4CVSS4.4AI score0.00291EPSS
Exploits0References5
CVE
CVE
added 2024/12/30 4:0 a.m.68 views

CVE-2024-13038

CVE-2024-13038 affects CodeAstro Simple Loan Management System v1.0, specifically the Login module’s /index.php. The vulnerability arises from manipulating the email parameter, causing SQL injection. It is exploitable remotely, and public exploits are disclosed. Multiple sources corroborate the i...

9.8CVSS7.5AI score0.00744EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/05 4:0 p.m.8 views

CVE-2024-12232 code-projects Simple CRUD Functionality index.php cross site scripting

A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...

5.3CVSS6.4AI score0.00393EPSS
Exploits1References5
OSV
OSV
added 2024/09/22 8:15 a.m.3 views

CVE-2024-9085

A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument date leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS6.9AI score0.00736EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/08/29 11:0 a.m.31 views

CVE-2024-8294 FeehiCMS index.php update unrestricted upload

A vulnerability, which was classified as critical, was found in FeehiCMS up to 2.1.1. This affects the function update of the file /admin/index.php?r=friendly-link%2Fupdate. The manipulation of the argument FriendlyLinkimage leads to unrestricted upload. It is possible to initiate the attack...

6.5CVSS0.00756EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/06/05 12:31 a.m.12 views

CVE-2024-5636 itsourcecode Bakery Online Ordering System index.php sql injection

A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file report/index.php. The manipulation of the argument procduct leads to sql injection. The attack may be launched remotely. The...

6.5CVSS7.3AI score0.00664EPSS
Exploits1References4
OSV
OSV
added 2024/05/14 3:45 p.m.5 views

CVE-2024-4818

A vulnerability was found in Campcodes Online Laundry Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

5.3CVSS4.9AI score0.00991EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/04/10 12:0 a.m.12 views

CVE-2024-3525 Campcodes Online Event Management System index.php cross site scripting

A vulnerability, which was classified as problematic, was found in Campcodes Online Event Management System 1.0. Affected is an unknown function of the file /views/index.php. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack remotely. The...

4CVSS3.8AI score0.00547EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/02/28 12:0 a.m.6 views

PT-2024-18460 · Unknown · Sourcecodester Online Learning System V2

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Learning System V2 version 1.0 Description: A problematic issue was found in the software, affecting an unknown function of the file /index.php. The manipulation of the page argument leads to cross-site scripting. It is...

6.1CVSS6.6AI score0.00714EPSS
Exploits1References6
Cvelist
Cvelist
added 2023/12/07 12:0 a.m.28 views

CVE-2023-48208

A Cross Site Scripting vulnerability in Availability Booking Calendar 5.0 allows an attacker to inject JavaScript via the name, pluginsmsapikey, pluginsmscountrycode, uuid, title, or country name parameter to index.php...

6.4AI score0.00499EPSS
Exploits2References1
CNNVD
CNNVD
added 2023/10/21 12:0 a.m.5 views

I-doit pro Cross-Site Scripting Vulnerability

i-doit is a configuration management database software from i-doit Inc. A security vulnerability exists in I-doit pro 25 and prior versions that stems from vulnerability to cross-site scripting XSS attacks via index.php...

5.4CVSS5.9AI score0.00517EPSS
Exploits1References4
OSV
OSV
added 2023/08/28 1:15 p.m.6 views

CVE-2023-40753

There is a Cross Site Scripting XSS vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2...

5.4CVSS5.8AI score0.01053EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/15 12:0 a.m.5 views

phpRecDB 跨站脚本漏洞

phpRecDB is a free php script from phpRecDB Inc. It is used to create a real-time record collection website. A cross-site scripting vulnerability exists in phpRecDB version 1.3.1, which stems from the lack of effective filtering and escaping of user-supplied data in the parameter r/view of the fi...

6.1CVSS6.1AI score0.00312EPSS
Exploits0References3
OSV
OSV
added 2023/08/10 5:15 p.m.4 views

CVE-2023-36309

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Document Creator v1.0...

6.1CVSS5.8AI score0.00388EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/10 12:0 a.m.4 views

PT-2023-25528 · Phpjabbers · Phpjabbers Callback Widget

Name of the Vulnerable Software and Affected Versions: PHPJabbers Callback Widget version 1.0 Description: There is a Cross Site Scripting XSS issue in the value-enum-o bf include timezone parameter of index.php. This allows for potential malicious script execution. Recommendations: For PHPJabber...

5.4CVSS5.3AI score0.00363EPSS
Exploits0References7
OSV
OSV
added 2023/07/10 4:15 p.m.2 views

CVE-2023-3564

A vulnerability was found in GZ Scripts GZ Multi Hotel Booking System 1.8. It has been classified as problematic. Affected is an unknown function of the file /index.php. The manipulation of the argument adults/children/calid leads to cross site scripting. It is possible to launch the attack...

6.1CVSS3.9AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/29 12:0 a.m.6 views

PT-2023-24927 · Unknown · Sourcecodester Shopping Website

Name of the Vulnerable Software and Affected Versions: SourceCodester Shopping Website version 1.0 Description: A critical issue has been found, affecting an unknown function of the file index.php. The manipulation of the username argument leads to sql injection, allowing remote attacks. The...

9.8CVSS7.2AI score0.00867EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/06/02 12:0 a.m.3 views

YFCMF 安全漏洞

YFCMF is a software application. It provides a lightweight enterprise website management system. A security vulnerability exists in YFCMF before 3.0.4, which stems from unknown code in index.php that causes path traversal...

9.8CVSS5.8AI score0.01208EPSS
Exploits1References4
Rows per page
Query Builder