PT-2025-51171

Name of the Vulnerable Software and Affected Versions snap7-rs versions up to 1.142.1 Description A flaw exists in snap7-rs up to version 1.142.1. The issue resides in the TSnap7MicroClient::opWriteArea function within the s7 micro client.cpp file, potentially leading to a heap-based buffer...

EUVD-2025-203179

A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...

CVE-2025-14583

A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the parsing process of DICOM files containing encapsulated PixelData fragments. An attacker can cause a segmentation fault and an application crash by supplying a crafted malicious DICOM file. Remediation A fix w...

CVE-2025-14583

A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...

EUVD-2025-203122

A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewadmin.php. This manipulation of the argument adminid causes sql injection. The attack may be initiated remotely. The exploit has been publishe...

CVE-2025-43426

creationtimestamp| type| source ---|---|--- 2025-12-12 21:00:07+00:00| published-proof-of-concept| Telegram/z917lPoY4z2i6pdf0d-zy8JTrnC7jL9Rrjt0jECLqNamFjY...

PT-2025-50963

Name of the Vulnerable Software and Affected Versions projectworlds Advanced Library Management System version 1.0 Description A flaw exists in projectworlds Advanced Library Management System version 1.0, specifically within the file /view admin.php. Manipulation of the admin id argument can lea...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure due to LLVM optimizations that may transform constant-time implementations into non-constant-time code. An attacker can obtain sensitive information by exploiting timing discrepancies through side-channel analysis...

CVE-2025-57459

creationtimestamp| type| source ---|---|--- 2025-12-10 21:00:05+00:00| published-proof-of-concept| Telegram/HZ3ZJRsPXN2xbtsA1DCWruuU-3EwXxx0KgUeziJX8Cuevwg...

CVE-2025-57462

creationtimestamp| type| source ---|---|--- 2025-12-10 21:00:05+00:00| published-proof-of-concept| Telegram/HZ3ZJRsPXN2xbtsA1DCWruuU-3EwXxx0KgUeziJX8Cuevwg...

CVE-2025-14334

A vulnerability (CVE-2025-14334) affects itsourcecode Student Management System version 1.0. The issue is in the file /new_adviser.php (also reported as /new adviser.php in some sources), where manipulating the Name parameter can trigger a SQL injection. The attack can be performed remotely, and ...

CVE-2025-14222

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

PT-2025-50209

Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A flaw exists in itsourcecode Student Management System 1.0, specifically within the file /new adviser.php. Manipulation of the Name argument in an unknown function can lead to SQL...

CVE-2025-14257

A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /newrecord.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used...

EUVD-2025-201716

A vulnerability was found in code-projects Simple Shopping Cart 1.0. This vulnerability affects unknown code of the file /Customers/settings.php. Performing manipulation of the argument userid results in sql injection. Remote exploitation of the attack is possible. The exploit has been made publi...

CVE-2025-14222

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

EUVD-2025-201693

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

EUVD-2025-201657

A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /membersearch.php. Executing manipulation of the argument rollnumber can lead to sql injection. The attack may be launched remotely. The exploit has been...

PT-2025-49512

A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /print personnel report.php. This manipulation of the argument per id causes sql injection. The attack may be initiated remotely. The exploit has been published and may be us...