CVE-2026-7731 code-projects BloodBank Managing System get_state.php sql injection

A security vulnerability has been detected in code-projects BloodBank Managing System 1.0. The affected element is an unknown function of the file getstate.php. The manipulation of the argument GSTATEID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...

Missing Authorization

Overview khoj is a Your Second Brain Affected versions of this package are vulnerable to Missing Authorization in the OAuth callback endpoint. An attacker can gain unauthorized access to and manipulate another user's Notion integration by supplying a known UUID in the state parameter, which can b...

Linux Distros Unpatched Vulnerability : CVE-2025-40273

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NFSD: free copynotify stateid in nfs4freeolstateid Typically copynotify stateid is freed either when parent's stateid is being close/freed or in nfsd4laundromat...

UBUNTU-CVE-2025-39688

In the Linux kernel, the following vulnerability has been resolved: nfsd: allow SCSTATUSFREEABLE when searching via nfs4lookupstateid The pynfs DELEG8 test fails when run against nfsd. It acquires a delegation and then lets the lease time out. It then tries to use the deleg stateid and expects to...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unallowed SCSTATUSFREEABLE state, which could result in an incorrect state ID...

CVE-2025-2054

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/editstate.php. The manipulation of the argument stateid leads to sql injection. The attack can be launched...

Code-Projects Blood Bank Management System 注入漏洞

Code-Projects Blood Bank Management System is an open source blood bank management system from Code-Projects. Code-Projects Blood Bank Management System version 1.0 suffers from an injection vulnerability that stems from improper manipulation of the stateid parameter, which could lead to an SQL...

kernel: NFSD: fix use-after-free on source server when doing inter-server copy

In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free on source server when doing inter-server copy Use-after-free occurred when the laundromat tried to free expired cpntfstate entry on the s2scpstateids list after inter-server copy completed. The sccplist...

simplesamlphp-module-openidprovider 跨站脚本漏洞

simplesamlphp-module-openidprovider is a simplesamlphp open source application. A cross-site scripting vulnerability exists in simplesamlphp-module-openidprovider version 0.8.x and earlier versions, which stems from the fact that incorrect manipulation of the parameter StateID can lead to...

CVE-2017-17638

Groupon Clone Script 3.01 has SQL Injection via the cityajax.php stateid parameter...