2 matches found
CVE-2025-54433 Bugsink is vulnerable to Path Traversal attacks via event_id in ingestion
Bugsink is a self-hosted error tracking service. In versions 1.4.2 and below, 1.5.0 through 1.5.4, 1.6.0 through 1.6.3, and 1.7.0 through 1.7.3, ingestion paths construct file locations directly from untrusted eventid input without validation. A specially crafted eventid can result in paths outsi...
Campcodes Complete Online Beauty Parlor Management System 安全漏洞
Campcodes Complete Online Beauty Parlor Management System is an online beauty parlor management system from Campcodes, Inc. A security vulnerability exists in Campcodes Complete Online Beauty Parlor Management System version 1.0, which originates from an SQL injection vulnerability in the email...