Ellucian Banner Self-Service 跨站脚本漏洞

Ellucian Banner Self-Service is a higher education self-service platform developed by the American company Ellucian. Versions of Ellucian Banner Self-Service prior to 2025-04-23 had a cross-site scripting vulnerability. This vulnerability stemmed from the lack of proper cleaning of the input...

[SECURITY] Fedora 43 Update: insight-18.0.50.20260306-3.fc43

Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for the latest GDB version...

[SECURITY] Fedora 43 Update: insight-18.0.50.20260306-2.fc43

Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for the latest GDB version...

EUVD-2026-4810

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in themrdemonized xray-monolith.This issue affects xray-monolith: before 2025.12.30...

PT-2025-52921

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's NTFS3 implementation related to uninitialized memory after a failed mi read operation within mi format new. The issue stems from the ntfs get bh...

[SECURITY] Fedora 42 Update: insight-13.0.50.20220502-27.fc42

Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for the latest GDB version...

CampCodes Online Apartment Visitor Management SQL注入漏洞

CampCodes Online Apartment Visitor Management is an online apartment visitor management system from CampCodes Philippines. CampCodes Online Apartment Visitor Management version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameters fromdate and...

CVE-2025-11330

The CVE describes a SQL injection in PHPGurukul Beauty Parlour Management System 1.1, caused by unsafely handling the fromdate/todate parameters in /admin/sales-reports-detail.php. This can be exploited remotely and the exploit has been disclosed. Connected sources corroborate a lack of input val...

PT-2025-40887

Name of the Vulnerable Software and Affected Versions PHPGurukul Beauty Parlour Management System version 1.1 Description A flaw exists in PHPGurukul Beauty Parlour Management System version 1.1 that allows for SQL injection. The issue is located in the /admin/sales-reports-detail.php file,...

SUSE CVE-2022-50328

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential use-after-free in jbd2fcwaitbufs In 'jbd2fcwaitbufs' use 'bh' after put buffer head reference count which may lead to use-after-free. So judge buffer if uptodate before put buffer head reference count...

1000 Projects Beauty Parlour Management System SQL注入漏洞

1000 Projects Beauty Parlour Management System is an open source beauty parlor management system from 1000 Projects. A SQL injection vulnerability exists in 1000 Projects Beauty Parlour Management System version 1.0, which is caused by incorrect manipulation of the parameter fromdate/todate in th...

PHPGurukul BP Monitoring Management System 安全漏洞

PHPGurukul BP Monitoring Management System is a bp monitoring management system from PHPGurukul. A security vulnerability exists in version 1.0 of the PHPGurukul BP Monitoring Management System, which originates from a SQL injection due to the incorrect operation of the parameter fromdate/todate ...

CVE-2025-7559

A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been classified as critical. This affects an unknown part of the file /admin/bwdates-report-result.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack...

Emergency Ambulance Hiring Portal bwdates-request-report-details.php File SQL Injection Vulnerability

Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter fromdate/todate in the file...

PHPGurukul Dairy Farm Shop Management System SQL注入漏洞

Dairy Farm Shop Management System is a PHP and MySQL based dairy farm management system . Dairy Farm Shop Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the fromdate/todate parameter in the file /bwdate-report-details.php for externally...

PHPGurukul Daily Expense Tracker System 安全漏洞

Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability, which originates from the lack of validation of externally-entered SQL statements in the parameter fromdate/todate in the file...

PHPGurukul Doctor Appointment Management System 注入漏洞

Doctor Appointment Management System is a doctor appointment management system. Doctor Appointment Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter fromdate/todate of...

PT-2024-38616

Name of the Vulnerable Software and Affected Versions Firmanet Software ERP versions prior to 22.11.2024 Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. The vendor...

X-Recon - A Utility For Detecting Webpage Inputs And Conducting XSS Scans

A utility for identifying web page inputs and conducting XSS scanning. Features: Subdomain Discovery: Retrieves relevant subdomains for the target website and consolidates them into a whitelist. These subdomains can be utilized during the scraping process. Site-wide Link Discovery: Collects all...

CVE-2024-30985

SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "todate" and "fromdate" parameters...