Lucene search
K

139 matches found

Positive Technologies
Positive Technologies
added 2024/02/25 12:0 a.m.6 views

PT-2024-18386 · Sourcecodester · Sourcecodester Employee Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Management System version 1.0 Description: A critical issue affects some unknown functionality of the file /myprofile.php. The manipulation of the id argument with the input 1%20or%201=1 leads to SQL injection. The...

8.8CVSS8.4AI score0.00628EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/01/31 12:0 a.m.4 views

PT-2024-16717 · Codeastro · Codeastro Real Estate Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Real Estate Management System version 1.0 Description: A problematic issue was found in the CodeAstro Real Estate Management System, affecting some unknown functionality of the file profile.php of the component Feedback Form. The...

5.4CVSS6.6AI score0.00571EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/01/22 12:0 a.m.5 views

PT-2024-15815 · Unknown · Codeastro Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A vulnerability has been found in the CodeAstro Online Railway Reservation System, classified as problematic. This issue affects unknown code of the file pass-profile.php. T...

6.1CVSS4.5AI score0.00571EPSS
Exploits1References6
OSV
OSV
added 2023/12/21 10:15 p.m.3 views

CVE-2023-7050

A vulnerability has been found in PHPGurukul Online Notes Sharing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file user/profile.php. The manipulation of the argument name/email leads to cross site scripting. The attack can be launche...

5.4CVSS3.8AI score
Exploits0References3
CNNVD
CNNVD
added 2023/12/21 12:0 a.m.7 views

PHPGurukul Online Notes Sharing System Security Vulnerability

PHPGurukul Online Notes Sharing System is an online notes sharing system from PHPGurukul Inc. A security vulnerability exists in version 1.0 of the PHPGurukul Online Notes Sharing System, which originates from a cross-site scripting XSS vulnerability in the file user/profile.php...

5.4CVSS5.8AI score0.00497EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/10/28 12:0 a.m.4 views

PT-2023-32369 · Alexanderlivanov · Fotoscms2

Name of the Vulnerable Software and Affected Versions: AlexanderLivanov FotosCMS2 versions up to 2.4.3 Description: A problematic vulnerability was found in the Cookie Handler component of the file profile.php, where the manipulation of the username argument leads to cross-site scripting. The...

6.1CVSS6.9AI score0.00391EPSS
Exploits1References6
OSV
OSV
added 2023/07/25 8:15 a.m.1 views

CVE-2023-3888

A vulnerability was found in Campcodes Beauty Salon Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack may be...

6.1CVSS3.8AI score
Exploits0References3
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.4 views

Campcodes Beauty Salon Management System SQL注入漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which originates from an unknown function in the file /admin/admin-profile.php that can lead to SQL injection...

7.5CVSS6.8AI score0.00521EPSS
Exploits1References4
Trellix
Trellix
added 2023/05/03 12:0 a.m.38 views

The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component

The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component By Bing Sun · May 03, 2023 Overview In October 2022, Microsoft released a security patch to address a unique information disclosure vulnerability in the...

5.5CVSS7.8AI score0.38347EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/04/07 12:0 a.m.5 views

PT-2023-17331 · Unknown · Phpgurukul Bp Monitoring Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul BP Monitoring Management System version 1.0 Description: A critical issue was found in the User Profile Update Handler component, specifically in the file profile.php. The manipulation of the name and mobno arguments leads to SQL...

6.5CVSS5.7AI score0.00625EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/03/10 12:0 a.m.3 views

PT-2023-16882 · Sourcecodester · Sourcecodester Online Graduate Tracer System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Graduate Tracer System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file admin/prof.php. The manipulation of the id argument leads to sql injection...

9.8CVSS6.9AI score0.00737EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/01/13 12:0 a.m.4 views

PT-2023-15569 · Unknown · Tramyardg Hotel-Mgmt-System

Name of the Vulnerable Software and Affected Versions: Tramyardg hotel-mgmt-system version 2022.4 Description: The issue concerns a Cross Site Scripting XSS vulnerability. It can be exploited via the process update profile.php file. Recommendations: For Tramyardg hotel-mgmt-system version 2022.4,...

5.4CVSS5.3AI score0.00447EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/01/07 12:0 a.m.3 views

PT-2023-12632 · Sourcecodester · Sourcecodester Royale Event Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Royale Event Management System version 1.0 Description: A problematic issue has been found in the system, affecting an unknown function of the file /royal event/companyprofile.php. The manipulation of the companyname, regno,...

6.1CVSS4.7AI score0.00657EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/01/07 12:0 a.m.3 views

Event Management System 跨站脚本漏洞

Event Management System is an event management system. A cross-site scripting XSS vulnerability exists in SourceCodester Royale Event Management System version 1.0, which originates from an unknown function in the file /royalevent/companyprofile.php, where manipulation of the parameters...

6.1CVSS3.9AI score0.00657EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/11/07 12:0 a.m.6 views

PT-2022-26730 · Unknown · Online Tours & Travels Management System

Name of the Vulnerable Software and Affected Versions: Online Tours & Travels Management System version 1.0 Description: The issue is related to an arbitrary file upload vulnerability in the update profile.php component. This allows attackers to execute arbitrary code via a crafted PHP file...

7.2CVSS7.2AI score0.0095EPSS
Exploits1References3
OSV
OSV
added 2022/06/02 2:15 p.m.3 views

CVE-2022-30822

In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "usersprofile.php" file...

8.8CVSS5.9AI score0.01099EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2020/01/08 12:0 a.m.4 views

PT-2020-18487

Name of the Vulnerable Software and Affected Versions PHPGurukul Hostel Management System version 2.0 Description The issue allows SQL injection via the id parameter in the "full-profile.php" file. This could potentially be exploited to extract or modify sensitive data. Recommendations For...

10CVSS9.4AI score0.02112EPSS
Exploits1References5
CNVD
CNVD
added 2017/11/03 12:0 a.m.5 views

Ingenious School Management System my_profile.php File Arbitrary File Upload Vulnerability

Ingenious School Management System is a web-based school management system. The system supports adding courses, posting grades and managing teachers. A security vulnerability exists in the myprofile.php file in Ingenious School Management System version 2.3.0. An attacker can exploit this...

8.8CVSS8.8AI score0.03947EPSS
Exploits4References1
OSV
OSV
added 2017/03/24 3:59 p.m.2 views

DEBIAN-CVE-2017-5506

Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file...

7.8CVSS6.1AI score0.02071EPSS
Exploits0References1
CNVD
CNVD
added 2016/09/19 12:0 a.m.5 views

Pivotal Cloud Foundry Elastic Runtime Information Disclosure Vulnerability

Pivotal Cloud Foundry PCF is an open source Platform-as-a-Service PaaS cloud computing platform from Pivotal Software that provides container scheduling, continuous delivery, and automated service deployment.Elastic Runtime is a runtime environment for Pivotal Cloud Foundry. Cloud Foundry PHP...

7.5CVSS6.8AI score0.01704EPSS
Exploits0References1
Rows per page
Query Builder