37 matches found
EUVD-2008-6322
Malware in sbrugna...
VulnCheck KEV: CVE-2023-46732
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. XWiki is vulnerable to reflected cross-site scripting RXSS via the rev parameter that is used in the content of the content menu without escaping. If an attacker can convince a user to...
CVE-2024-32746
A cross-site scripting XSS vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the MENU parameter under the Menu module...
CVE-2024-44587
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombosave.php via the "menu" parameter...
CVE-2025-4870
A vulnerability classified as critical was found in itsourcecode Restaurant Management System 1.0. This vulnerability affects unknown code of the file /admin/menusave.php. The manipulation of the argument menu leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-4869
A vulnerability classified as critical has been found in itsourcecode Restaurant Management System 1.0. This affects an unknown part of the file /admin/memberupdate.php. The manipulation of the argument menu leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
itsourcecode Restaurant Management System 注入漏洞
itsourcecode Restaurant Management System is itsourcecode open source a restaurant management system . An injection vulnerability exists in version 1.0 of itsourcecode Restaurant Management System, which is caused by incorrect manipulation of the menu parameter in the file /admin/menusave.php,...
itsourcecode Restaurant Management System 注入漏洞
itsourcecode Restaurant Management System is itsourcecode open source a restaurant management system . An injection vulnerability exists in version 1.0 of itsourcecode Restaurant Management System, which is caused by incorrect manipulation of the menu parameter in the file /admin/memberupdate.php...
Online Restaurant Management System SQL注入漏洞
Online Restaurant Management System is a Code-projects open source online restaurant management system . Online Restaurant Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the /admin/menusave.php file improper handling of the parameter menu, which may...
Code-Projects Online Restaurant Management System 注入漏洞
Code-Projects Online Restaurant Management System is a Code-Projects open source online restaurant management system. Code-Projects Online Restaurant Management System version 1.0 suffers from an injection vulnerability that originates from improper handling of the parameter menu in the...
WordPress Gotcha plugin <= 1.0.0 - Reflected Cross-Site Scripting via menu Parameter vulnerability
Reflected Cross-Site Scripting via menu Parameter vulnerability discovered by johska in WordPress Plugin Gotcha versions = 1.0.0...
PT-2025-3786 · Unknown · Tmd Custom Header Menu
Name of the Vulnerable Software and Affected Versions: TMD Custom Header Menu version 4.0.0.1 Description: A problem was found in the processing of the file /admin/index.php. The manipulation of the headermenu id argument leads to SQL injection. The attack may be initiated remotely. The complexit...
CVE-2024-44587
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombosave.php via the "menu" parameter...
CVE-2024-44587
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombosave.php via the "menu" parameter...
CVE-2024-44587
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombosave.php via the "menu" parameter...
CVE-2024-44587
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombosave.php via the "menu" parameter...
CVE-2023-32136
D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...
CVE-2024-32746
A cross-site scripting XSS vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the MENU parameter under the Menu module...
CVE-2024-32746
A cross-site scripting XSS vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the MENU parameter under the Menu module...
CVE-2024-32746
A cross-site scripting XSS vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the MENU parameter under the Menu module...