120 matches found
EUVD-2013-7237
Malware in sbrugna...
EUVD-2019-15296
Malware in sbrugna...
EUVD-2007-1461
Malware in sbrugna...
EUVD-2007-1185
Malware in sbrugna...
EUVD-2025-29180
Malicious code in bioql PyPI...
EUVD-2025-29087
Malicious code in bioql PyPI...
Unmark searchform.php file cross-site scripting vulnerability
Unmark is an open source to-do list application for bookmarking. Unmark 1.9.3 and earlier versions suffer from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by parameter q in the file...
CVE-2025-10446 Campcodes Computer Sales and Inventory System cust_searchfrm.php sql injection
A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/custsearchfrm.php?action=edit. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...
CVE-2025-10446 Campcodes Computer Sales and Inventory System cust_searchfrm.php sql injection
A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/custsearchfrm.php?action=edit. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...
CVE-2025-10446
CVE-2025-10446 affects Campcodes Computer Sales and Inventory System 1.0. The vulnerability is an SQL injection in an unknown function of the file /pages/cust_searchfrm.php?action=edit, triggered by manipulating the ID parameter. Exploitation can be conducted remotely and the exploit has been pub...
CVE-2025-10330
A flaw has been found in cdevroe unmark up to 1.9.3. This vulnerability affects unknown code of the file application/views/layouts/topbar/searchform.php. This manipulation of the argument q causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been published...
CVE-2025-10330
A flaw has been found in cdevroe unmark up to 1.9.3. This vulnerability affects unknown code of the file application/views/layouts/topbar/searchform.php. This manipulation of the argument q causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been published...
CVE-2025-10330 cdevroe unmark searchform.php cross site scripting
A flaw has been found in cdevroe unmark up to 1.9.3. This vulnerability affects unknown code of the file application/views/layouts/topbar/searchform.php. This manipulation of the argument q causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been published...
Unmark 代码注入漏洞
Unmark is an open source to-do list application for bookmarking. Unmark 1.9.3 and earlier versions suffer from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by parameter q in the file...
Diskover-web 安全漏洞
Diskover-web is a file system indexing tool from Diskover, Inc. in the United States. A security vulnerability exists in Diskover-web version v2.3.0, which stems from improper cleanup of multiple POST parameters in the Elasticsearch configuration form, which could lead to an SQL injection attack...
WordPress plugin SimplyRETS Real Estate IDX 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress plugin Sell Media 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress plugin All-in-One Video Gallery 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in t...
Follet Learning Solutions Destiny Security Breach
Follet Learning Solutions Destiny is an educational management system from Follet Learning, Inc. A security vulnerability exists in Follet Learning Solutions Destiny version 20.01U and prior versions, which stems from a Reflected Cross-Site Scripting XSS vulnerability in the component...
SUSE CVE-2020-25715
A flaw was found in pki-core 10.9.0. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject code into the search query form which can get automatically executed. The highest threat from this vulnerability is to data integrity...