422 matches found
CVE-2026-3751
The CVE-2026-3751 affects SourceCodester Employee Task Management System 1.0. A SQL injection exists in the GET Parameter Handler for the /daily-attendance-report.php file, triggered by manipulating the Date parameter. The vulnerability is exploitable remotely and exploits are publicly available....
SourceCodester Employee Task Management System SQL注入漏洞
SourceCodester Employee Task Management System is an open-source employee task management system developed by SourceCodester. Versions of the SourceCodester Employee Task Management System prior to 1.0 contained a SQL injection vulnerability. This vulnerability stemmed from the handling of the Da...
PT-2026-23958
Name of the Vulnerable Software and Affected Versions SourceCodester Employee Task Management System version 1.0 Description A flaw exists in SourceCodester Employee Task Management System that allows for SQL injection. The issue is located in the GET Parameter Handler component, specifically...
kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...
kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...
kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...
PT-2026-22031
Name of the Vulnerable Software and Affected Versions Vikunja versions prior to 2.0.0 Description The application allows users to set weak passwords without enforcing minimum strength requirements. Active sessions remain valid after a user changes their password, potentially allowing an attacker...
kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...
CVE-2026-25947
Worklenz is a project management tool. Prior to 2.1.7, there are multiple SQL injection vulnerabilities were discovered in backend SQL query construction affecting project and task management controllers, reporting and financial data endpoints, real-time socket.io handlers, and resource allocatio...
Worklenz SQL注入漏洞
Worklenz is a project management tool developed under open source in Worklenz. Versions of Worklenz prior to 2.1.7 contained a SQL injection vulnerability. This vulnerability stemmed from multiple SQL injection points in the backend SQL queries, affecting functions such as project task management...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004872)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004872 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Add TMF to tmrlist handling An abort that is responded to by iSCSI itself is...
CVE-2025-68869
Incorrect Privilege Assignment vulnerability in LazyCoders LLC LazyTasks lazytasks-project-task-management allows Privilege Escalation.This issue affects LazyTasks: from n/a through = 1.2.37...
CVE-2025-68869
Incorrect Privilege Assignment vulnerability in LazyCoders LLC LazyTasks lazytasks-project-task-management allows Privilege Escalation.This issue affects LazyTasks: from n/a through = 1.4.01...
PT-2026-4092
Name of the Vulnerable Software and Affected Versions LazyTasks versions through 1.4.01 Description A privilege assignment issue exists in LazyTasks lazytasks-project-task-management, potentially allowing privilege escalation. Recommendations Update LazyTasks to a version later than 1.4.01...
Spring AI Agentic Patterns (Part 3): Why Your AI Agent Forgets Tasks (And How to Fix It)
Have you ever asked an AI agent to perform a complex multi-step task, only to find it skipped a critical step halfway through? You're not alone. Research shows that LLMs struggle with "lost in the middle" failures—forgetting tasks buried in long contexts. When your agent juggles file edits, test...
CVE-2024-2555
A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file update-admin.php. The manipulation of the argument adminid leads to sql injection. The attack may be launched remotely. The...
CVE-2024-2577
A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /update-employee.php. The manipulation of the argument adminid leads to authorization bypass. The attack can be initiated remotely...
CVE-2024-2573
A vulnerability classified as critical has been found in SourceCodester Employee Task Management System 1.0. Affected is an unknown function of the file /task-info.php. The manipulation leads to execution after redirect. It is possible to launch the attack remotely. The exploit has been disclosed...
CVE-2024-2570
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /edit-task.php. The manipulation leads to execution after redirect. It is possible to initiate the attack remotely. The exploit has been...
CVE-2024-2576
A vulnerability, which was classified as critical, was found in SourceCodester Employee Task Management System 1.0. This affects an unknown part of the file /update-admin.php. The manipulation of the argument adminid leads to authorization bypass. It is possible to initiate the attack remotely. T...