PT-2025-20326

Name of the Vulnerable Software and Affected Versions Slurm versions 22.05, 23.02, 23.11.11, 24.05.8, and 24.11.5 are affected. Description The issue is related to permission handling for Coordinators within the accounting system, allowing them to promote a user to Administrator. This is due to a...

PT-2024-17920 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A vulnerability was found in the PHPGurukul Land Record System, affecting an unknown function of the file /admin/add-property.php. The manipulation of the Land Subtype argument leads to...

PT-2024-17926 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A vulnerability was found in the PHPGurukul Land Record System, affecting some unknown processing of the file /admin/search-property.php. The manipulation of the Search By argument leads ...

PT-2024-37076 · Tapir · Tapir

Name of the Vulnerable Software and Affected Versions: Tapir versions 0.9.0 through 0.9.1 Description: Tapir is a private Terraform registry. The issue concerns scope-able Deploykeys, where attackers can guess the key to gain write access to the registry. Recommendations: For versions 0.9.0 and...

PT-2024-17925 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A problem has been found in the code of the file /admin/contactus.php. The manipulation of the Page Description argument leads to cross-site scripting. The attack can be initiated remotel...

PT-2024-17924 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A problem has been found in the system, affecting an unknown part of the /admin/aboutus.php file. The issue arises from the manipulation of the Page Description argument, leading to...

PT-2024-17889 · Unknown · Antabot White-Jotter

Name of the Vulnerable Software and Affected Versions: Antabot White-Jotter versions up to 0.2.2 Description: A problematic issue has been found in the Article Editor component, specifically in the /admin/content/editor file, affecting an unknown functionality. The manipulation of the articleCove...

PT-2024-37073 · Simofa · Simofa

Name of the Vulnerable Software and Affected Versions: Simofa versions prior to 0.2.7 Description: Simofa is a tool to help automate static website building and deployment. Due to a design mistake in the RouteLoader class, some API routes may be publicly accessible when they should require...

PT-2024-17886 · Unknown · Antabot White-Jotter

Name of the Vulnerable Software and Affected Versions: Antabot White-Jotter versions up to 0.2.2 Description: A problematic issue was found in the Edit Book Handler component, affecting an unknown function of the file /admin/content/book. This leads to server-side request forgery, which can be...

PT-2024-17857 · Ruifang Tech · Ruifang-Tech Rebuild

Name of the Vulnerable Software and Affected Versions: ruifang-tech Rebuild version 3.8.6 Description: A vulnerability has been found in the Project Tasks Section component, affecting an unknown part of the file /project/050-9000000000000001/tasks. The manipulation of the description argument lea...

PT-2024-17844 · Codeastro · Codeastro Car Rental System

Name of the Vulnerable Software and Affected Versions: CodeAstro Car Rental System version 1.0 Description: A critical issue has been found in the CodeAstro Car Rental System. The problem affects an unknown functionality of the file /bookingconfirm.php. The manipulation of the driver id from...

PT-2024-17132 · WordPress · Wp-Publications

Name of the Vulnerable Software and Affected Versions: wp-publications WordPress plugin versions 1.2 and earlier Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks even when the unfiltered html capability is disallowed, for example i...

PT-2024-36832 · Tcpdf +1 · Tcpdf +1

Name of the Vulnerable Software and Affected Versions: TCPDF versions prior to 6.8.0 Description: An issue was discovered in the Error function, which lacks an htmlspecialchars call for the error message. This could potentially lead to issues with error message handling. Recommendations: For...

PT-2024-17814 · Codeastro · Codeastro House Rental Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro House Rental Management System version 1.0 Description: A critical issue has been found in the CodeAstro House Rental Management System. The problem affects an unknown functionality of the file /ownersignup.php. Manipulation of the...

PT-2024-10257 · Linksys · Linksys E8450

Name of the Vulnerable Software and Affected Versions: Linksys E8450 version 1.2.00.360516 Description: The issue is related to a buffer overflow vulnerability in the Linksys E8450 Wi-Fi router's firmware. This vulnerability is caused by the lack of size verification when copying input data,...

PT-2025-3464 · Linksys · Linksys E8450

Name of the Vulnerable Software and Affected Versions: Linksys E8450 version 1.2.00.360516 Description: A command injection issue was discovered via wizard status, allowing for potential exploitation. Recommendations: For Linksys E8450 version 1.2.00.360516, consider restricting access to the...

PT-2024-17825 · Unknown · 1000 Projects Portfolio Management System Mca

Name of the Vulnerable Software and Affected Versions: 1000 Projects Portfolio Management System MCA version 1.0 Description: A critical issue has been found in the 1000 Projects Portfolio Management System MCA, affecting some unknown functionality of the file /update pd process.php. The...

PT-2024-17805 · Unknown · Simple Admin Panel

Name of the Vulnerable Software and Affected Versions: code-projects Simple Admin Panel version 1.0 Description: A critical vulnerability was found in the Simple Admin Panel, affecting unknown code in the editItemForm.php file. The manipulation of the argument record leads to SQL injection. The...

PT-2024-17835 · Unknown · 1000 Projects Daily College Class Work Report Book

Name of the Vulnerable Software and Affected Versions: 1000 Projects Daily College Class Work Report Book version 1.0 Description: A critical issue has been found, affecting an unknown part of the file /login.php. The manipulation of the user argument leads to SQL injection. It is possible to...

PT-2024-17809 · Code Projects · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue affects the add edu function of the file / parse/ all edits.php. The manipulation of the degree argument leads to SQL injection. The attack may be initiated remotely. Oth...