Sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-6402 PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-6402

CVE-2023-6402 affects PHPGurukul Nipah Virus Testing Management System v1.0. The vulnerability lies in add-phlebotomist.php, where unsafely manipulating the empid parameter enables SQL injection. Exploitation is possible remotely and has been disclosed publicly. Multiple connected sources confirm...

CVE-2023-6402 PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the attack remotely. The...

Nipah Virus Testing Management System Cross-Site Scripting Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site scripting vulnerability exists in version 1.0 of the Nipah Virus Testing Management System, which stems from a misuse of the parameter empid/fullname that can lead to cross-site scripting...

PT-2023-32669 · Unknown · Phpgurukul Nipah Virus Testing Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A vulnerability was found in the PHPGurukul Nipah Virus Testing Management System, affecting an unknown functionality of the file add-phlebotomist.php. The manipulation...

Nipah Virus Testing Management System Security Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A security vulnerability exists in version 1.0 of the PHPGurukul Nipah Virus Testing Management System, which stems from an incorrect manipulation of the parameter empid that can lead to sql injection...

The vulnerability of the Python programming language implementation in the IBM AIX operating system allows a perpetrator to trigger a service failure.

The vulnerability of the Python programming language implementation in the IBM AIX operating system exists due to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of Flarum’s forum software, related to insufficient validation of incoming requests, allows a violator to carry out an SSRF attack.

The vulnerability of Flarum’s forum software is related to insufficient testing of incoming requests. Exploiting this vulnerability allows a remote attacker to execute an SSRF attack...

CSZ CMS 1.3.0 Remote Command Execution

Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution Date: 17/11/2023 Exploit Author: tmrswrr Vendor Homepage: https://www.cszcms.com/ Software Link: https://www.cszcms.com/link/3https://sourceforge.net/projects/cszcms/files/latest/download Version: Version 1.3.0 Tested on:...

CVE-2023-6297

A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with the input...

CVE-2023-6297

A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with the input...

CVE-2023-6297

PHPGurukul Nipah Virus Testing Management System 1.0 is affected in the Search Report Page component (patient-search-report.php). A cross-site scripting vulnerability arises from manipulating the Search By Patient Name parameter with malicious input, e.g. , which can be triggered remotely. Multip...

CVE-2023-6297 PHPGurukul Nipah Virus Testing Management System Search Report Page patient-search-report.php cross site scripting

A vulnerability classified as problematic has been found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file patient-search-report.php of the component Search Report Page. The manipulation of the argument Search By Patient Name with the input...

Mass-Bruter - Mass Bruteforce Network Protocols

Mass bruteforce network protocols Info Simple personal script to quickly mass bruteforce common services in a large scale of network. It will check for default credentials on ftp, ssh, mysql, mssql...etc. This was made for authorized red team penetration testing purpose only. How it works 1. Use...

Nipah virus Testing Management System Cross-Site Scripting Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site scripting vulnerability exists in version 1.0 of the Nipah Virus Testing Management System due to an unknown part of the file Patient-search-report.php in the component Search Report Page, which can be...

Exploit for CVE-2023-38646

CVE-2023-38646 Metabase Pre-Auth RCE 11/26/2023 Metabase ope...

androidx.car.app:app-testing (>=1.4.0 <=1.4.0-rc02), androidx.media3:media3-test-utils-robolectric (>=1.2.0 <=1.2.1) +2211 more potentially affected by CVE-2023-33202 via org.bouncycastle:bcprov-jdk18on (>=1.71 <=1.72)

org.bouncycastle:bcprov-jdk18on MAVEN version =1.71, =1.4.0, =1.2.0, =1.2.0-alpha07, =2023.12.01.210510-f61f157, =2023.12.01.210510-f61f157, =2023.12.01.210510-f61f157, =2023.12.01.210510-f61f157, =1.6.0, =4.8.3, =1.4.0, =1.0.0, =4.0.7, =4.0.8 and more Source cves: CVE-2023-33202 Source advisory:...

Crimeware and financial cyberthreats in 2024

At Kaspersky, we constantly monitor the financial cyberthreat landscape, which includes threats to financial institutions, such as banks, and financially motivated threats, such as ransomware, that target a broader range of industries. As part of our Kaspersky Security Bulletin, we try to predict...

CVE-2023-48310 Ability to DoS the testing infrastructure by overwriting files

TestingPlatform is a testing platform for Internet Security Standards. Prior to version 2.1.1, user input is not filtered correctly. Nmap options are accepted. In this particular case, the option to create log files is accepted in addition to a host name and even without. A log file is created at...