Lucene search
K

88859 matches found

RedhatCVE
RedhatCVE
added 2025/12/30 1:2 a.m.8 views

CVE-2025-15165

A vulnerability has been found in itsourcecode Online Cake Ordering System 1.0. The impacted element is an unknown function of the file /updatecustomer.php?action=edit. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed...

9.8CVSS7AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/30 1:2 a.m.9 views

CVE-2025-56333

An issue in Fossorial fosrl/pangolin v.1.6.2 and before allows a remote attacker to escalate privileges via the 2FA component...

9.8CVSS7.4AI score0.00423EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/30 12:32 a.m.4 views

EUVD-2025-205664

A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an unknown part of the file /home/editfood.php. This manipulation of the argument a/b/c/d causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public...

6.5CVSS6.5AI score0.00309EPSS
Exploits1References8
EUVD
EUVD
added 2025/12/30 12:32 a.m.3 views

EUVD-2025-205661

A security flaw has been discovered in code-projects Refugee Food Management System 1.0. Affected by this issue is some unknown functionality of the file /home/editrefugee.php. The manipulation of the argument rfid results in sql injection. The attack can be launched remotely. The exploit has bee...

7.5CVSS7.3AI score0.00326EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.5 views

PT-2025-53843

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions prior to 3.2.1 Description A cross site scripting issue exists in SohuTV CacheCloud. The issue is located in the init function within the file src/main/java/com/sohu/cache/web/controller/LoginController.java. This...

5.3CVSS6AI score0.00277EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/12/29 9:3 p.m.13 views

CVE-2025-15153

A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the file /data/pbootcms.db of the component SQLite Database. Executing a manipulation can lead to files or directories accessible. It is possible to launch the attack remotely. Attacks of this nature are...

6.3CVSS4.3AI score0.00429EPSS
Exploits1References1
NVD
NVD
added 2025/12/29 8:15 p.m.3 views

CVE-2025-15203

A vulnerability was found in SohuTV CacheCloud up to 3.2.0. This impacts the function index of the file src/main/java/com/sohu/cache/web/controller/ResourceController.java. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has bee...

4.8CVSS0.00207EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/29 7:32 p.m.2 views

CVE-2025-15202 SohuTV CacheCloud TaskController.java taskQueueList cross site scripting

A vulnerability has been found in SohuTV CacheCloud up to 3.2.0. This affects the function taskQueueList of the file src/main/java/com/sohu/cache/web/controller/TaskController.java. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been...

4.8CVSS5.2AI score0.00207EPSS
Exploits1References4
OSV
OSV
added 2025/12/29 6:15 p.m.1 views

CVE-2025-15198

A weakness has been identified in code-projects College Notes Uploading System 1.0. This issue affects some unknown processing of the file /login.php. Executing a manipulation of the argument User can lead to sql injection. The attack may be launched remotely. The exploit has been made available ...

9.8CVSS5.8AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/29 3:3 p.m.5 views

CVE-2025-15141

A vulnerability was determined in Halo up to 2.21.10. This issue affects some unknown processing of the file /actuator of the component Configuration Handler. Executing a manipulation can lead to information disclosure. The attack may be performed from remote. This attack is characterized by high...

3.1CVSS3.9AI score0.00217EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/29 11:2 a.m.3 views

EUVD-2025-205574

A flaw has been found in code-projects Refugee Food Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /home/refugeesreport.php. This manipulation of the argument a causes sql injection. It is possible to initiate the attack remotely. The exploit has bee...

7.5CVSS6.4AI score0.00323EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/12/29 11:2 a.m.3 views

CVE-2025-15185 code-projects Refugee Food Management System refugeesreport.php sql injection

A flaw has been found in code-projects Refugee Food Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /home/refugeesreport.php. This manipulation of the argument a causes sql injection. It is possible to initiate the attack remotely. The exploit has bee...

7.5CVSS6.6AI score0.00323EPSS
Exploits1References5
OSV
OSV
added 2025/12/29 9:15 a.m.4 views

CVE-2025-15180

A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function of the file /goform/webExcptypemanFilte of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The...

8.6CVSS6.5AI score0.01005EPSS
Exploits1References6
OSV
OSV
added 2025/12/29 7:15 a.m.4 views

CVE-2025-15177

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

8.6CVSS6.5AI score0.00679EPSS
Exploits3References6
OSV
OSV
added 2025/12/29 7:15 a.m.3 views

CVE-2025-15176

A flaw has been found in Open5GS up to 2.7.5. This affects the function decodeipv6header/ogspfcppdrrulefindbypacket of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing a manipulation can lead to reachable assertion. It is possible to launch the...

7.5CVSS5.1AI score
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2025/12/29 6:32 a.m.2 views

CVE-2025-15176

A flaw has been found in Open5GS up to 2.7.5. This affects the function decodeipv6header/ogspfcppdrrulefindbypacket of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing a manipulation can lead to reachable assertion. It is possible to launch the...

7.5CVSS5.1AI score0.00531EPSS
Exploits1References8
NVD
NVD
added 2025/12/29 6:15 a.m.5 views

CVE-2025-15175

A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. Affected by this issue is the function doAppList/appCommandAnalysis of the file src/main/java/com/sohu/cache/web/controller/AppController.java. Performing manipulation results in cross site scripting. It is possible to initiate the...

5.4CVSS0.00245EPSS
Exploits1References6
CVE
CVE
added 2025/12/29 6:2 a.m.17 views

CVE-2025-15175

CVE-2025-15175 affects SohuTV CacheCloud up to 3.2.0. The vulnerability lies in the doAppList/appCommandAnalysis function in AppController.java, where input manipulation can trigger cross-site scripting. Exploitation can be performed remotely, and the exploit is publicly available. Affected versi...

5.4CVSS5.6AI score0.00245EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.3 views

PT-2025-53787

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions up to 3.2.0 Description A flaw exists in SohuTV CacheCloud that allows for cross site scripting. This issue is related to the taskQueueList function within the file...

4.8CVSS5.5AI score0.00207EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.6 views

PT-2025-53704

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A flaw exists in the HTTP Request Handler component of Tenda WH450 version 1.0.0.18. The issue relates to stack-based buffer overflow triggered by manipulating the page argument when processing the file...

8.6CVSS7.1AI score0.00679EPSS
Exploits1References9
Rows per page
Query Builder