CVE-2025-69992

CVE-2025-69992 affects the phpgurukul News Portal Project V4.1. The issue is a file upload vulnerability in upload.php that permits uploading files of any format without authentication, enabling arbitrary uploads. The CVSS 3.1 base score is 9.8 (CRITICAL) with Network access, Low attack complexit...

CVE-2025-69991

The connected sources confirm a concrete vulnerability in phpgurukul News Portal Project V4.1: a SQL Injection in the check_availablity.php component. The issue is described across multiple feeds as affecting the project and arises from improper handling of input leading to SQL injection. No expl...

CVE-2025-69990

phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in removefile.php. The parameter file can cause any file to be deleted...

PT-2026-2577

CVE-2025-69991 phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in check availablity.php. https://t.co/GZ7rp0v0MC...

PT-2026-2578

CVE-2025-69992 phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authe… https://t.co/1WpN7z5IOS...

CVE-2025-69991

phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in checkavailablity.php...

CVE-2025-69992

phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authentication...

WordPress plugin Social-Share-Buttons SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plugin...

CVE-2025-69991

phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in checkavailablity.php...

PT-2026-2423

Name of the Vulnerable Software and Affected Versions Social-Share-Buttons version 2.2.3 Description The software contains a SQL injection issue in the project id parameter. Attackers can exploit this by sending specially crafted POST requests with malicious SQL payloads to manipulate database...

PHPGurukul News Portal Project 安全漏洞

PHPGurukul News Portal Project is a news portal project by PHPGurukul Inc. A security vulnerability exists in PHPGurukul News Portal Project version V4.1, which stems from a SQL injection in the checkavailablity.php file...

openc3-api Vulnerable to Unauthenticated Remote Code Execution

Summary OpenC3 COSMOS contains a critical remote code execution vulnerability reachable through the JSON-RPC API. When a JSON-RPC request uses the string form of certain APIs, attacker-controlled parameter text is parsed into values using Stringconverttovalue. For array-like inputs, converttovalu...

Exploit for SQL Injection in Vishalmathur Cloudclassroom-Php_Project

...

CVE-2025-15504

A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...

EUVD-2026-1850

A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...

CVE-2025-15504

The vulnerability is in lief-project LIEF up to 0.17.1, affecting the ELF Binary Parser’s function Parser::parse_binary in src/ELF/Parser.tcc and causing a null pointer dereference . Exploitation requires local access; a public exploit exists. Upgrade to version 0.17.2 to resolve the issue (patch...

CVE-2026-22605

OpenProject is an open-source, web-based project management software. OpenProject versions prior to version 16.6.3, allowed users with the View Meetings permission on any project, to access meeting details of meetings that belonged to projects, the user does not have access to. This issue has bee...

PT-2026-1781

Name of the Vulnerable Software and Affected Versions lief-project LIEF versions up to 0.17.1 Description A security flaw exists in LIEF, specifically within the ELF Binary Parser component. The issue resides in the Parser::parse binary function located in the file src/ELF/Parser.tcc. This...

PT-2026-2225

Name of the Vulnerable Software and Affected Versions OpenProject versions prior to 16.6.3 Description OpenProject is a web-based project management software. Versions prior to 16.6.3 allowed users with the ‘View Meetings’ permission on any project to access meeting details from projects they did...

CVE-2005-1641

modchannel in The Ignition Project ignitionServer 0.3.0 to 0.3.6, and possibly earlier versions, does not allow protected operators to access channels that have been locked out by a key, which allows IRC users to cause a denial of service...