Lucene search
K

139 matches found

Positive Technologies
Positive Technologies
added 2025/11/07 12:0 a.m.9 views

PT-2025-45467

Name of the Vulnerable Software and Affected Versions projectworlds Online Notes Sharing Platform version 1.0 Description A flaw exists in projectworlds Online Notes Sharing Platform that allows for unrestricted file uploads. This issue is related to the manipulation of the image argument within...

6.5CVSS6.1AI score0.00326EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/27 6:2 p.m.3 views

EUVD-2025-36230

A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. The impacted element is an unknown function of the file admin-profile.php. Executing manipulation of the argument adminname/email can lead to cross site scripting. The attack may be launched remotely. The exploit has been...

4.8CVSS5AI score0.00238EPSS
Exploits1References7
NVD
NVD
added 2025/10/11 10:15 a.m.6 views

CVE-2025-11595

A vulnerability was found in Campcodes Online Apartment Visitor Management System 1.0. Impacted is an unknown function of the file /admin-profile.php. Performing a manipulation of the argument mobilenumber results in sql injection. Remote exploitation of the attack is possible. The exploit has be...

9.8CVSS0.00376EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.4 views

PT-2025-41691

Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in code-projects Client Details System version 1.0 that allows for remote code execution. The issue is located in the file /admin/update-profile.php and involves...

6.5CVSS7AI score0.00325EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-0290

Malware in sbrugna...

6.2CVSS6.4AI score0.00291EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.4 views

SourceCodester Hotel and Lodge Management System 代码问题漏洞

SourceCodester Hotel and Lodge Management System is a SourceCodester open source hotel and lodge management system. A code issue vulnerability exists in version 1.0 of the SourceCodester Hotel and Lodge Management System, which stems from an incorrect manipulation of the parameter image in the fi...

8.8CVSS6.6AI score0.00389EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27101

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00379EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7432

Malicious code in bioql PyPI...

9.8CVSS5AI score0.00383EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-29135

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00329EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-26224

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00245EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27194

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00384EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/20 11:26 a.m.8 views

CVE-2025-10663

A vulnerability was found in PHPGurukul Online Course Registration 3.1. This affects an unknown function of the file /my-profile.php. Performing manipulation of the argument cgpa results in sql injection. The attack may be initiated remotely. The exploit has been made public and could be used...

9.8CVSS7.3AI score0.00398EPSS
Exploits1References1
CVE
CVE
added 2025/09/18 11:2 a.m.16 views

CVE-2025-10663

CVE-2025-10663 affects PHPGurukul Online Course Registration 3.1, specifically the /my-profile.php cgpa parameter. The root cause is input manipulation that enables SQL injection, with a remote attack surface and a publicly disclosed exploit. Multiple sources confirm the vulnerability and its exp...

9.8CVSS7.2AI score0.00398EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.4 views

PT-2025-38310

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Course Registration version 3.1 Description A SQL injection issue exists in PHPGurukul Online Course Registration version 3.1. The issue is located in the /my-profile.php file. Manipulation of the cgpa argument can trigger th...

9.8CVSS7.5AI score0.00398EPSS
Exploits1References9
CNVD
CNVD
added 2025/09/11 12:0 a.m.4 views

Small CRM /profile.php File SQL Injection Vulnerability

Small CRM is a customer relationship management system. Small CRM suffers from an SQL injection vulnerability that stems from the /profile.php file not having a secure filter for the Name parameter. No details of the vulnerability are available at this time...

9.8CVSS7.9AI score0.00384EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/09 12:32 a.m.4 views

CVE-2025-10114 PHPGurukul Small CRM profile.php sql injection

A vulnerability was found in PHPGurukul Small CRM 4.0. Affected by this issue is some unknown functionality of the file /profile.php. The manipulation of the argument Name results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS6.9AI score0.00384EPSS
Exploits1References5
CVE
CVE
added 2025/09/09 12:32 a.m.15 views

CVE-2025-10114

CVE-2025-10114 describes a SQL injection vulnerability in PHPGurukul Small CRM 4.0’s file /profile.php where the Name parameter can be manipulated to execute arbitrary SQL. The connected documents confirm remote exploitation and that the exploit has been publicly disclosed, affecting the web appl...

9.8CVSS7.4AI score0.00384EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/08 4:32 a.m.2 views

CVE-2025-10083 SourceCodester Pet Grooming Management Software profile.php unrestricted upload

A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/profile.php. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been publicl...

6.5CVSS6.3AI score0.00385EPSS
Exploits1References7
CVE
CVE
added 2025/09/08 3:32 a.m.24 views

CVE-2025-10081

CVE-2025-10081 affects SourceCodester Pet Management System v1.0. The flaw is in /admin/profile.php, where manipulating the website_image argument enables unrestricted file upload, with remote exploitation possible. The vulnerability is corroborated by multiple sources; an exploit has been publis...

7.2CVSS4.7AI score0.00427EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/08 1:2 a.m.3 views

CVE-2025-10076 SourceCodester Online Polling System manage-profile.php sql injection

A weakness has been identified in SourceCodester Online Polling System 1.0. This affects an unknown function of the file /manage-profile.php. This manipulation of the argument email causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public and...

7.5CVSS6.9AI score0.00379EPSS
Exploits1References5
Rows per page
Query Builder