EUVD-2024-17550

Malicious code in bioql PyPI...

CVE-2025-57147

A SQL Injection vulnerability was found in phpgurukul Complaint Management System 2.0. The vulnerability is due to lack of input validation of multiple parameters including fullname, email, and contactno in user/registration.php...

CVE-2024-1825

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input leads to cross site scripting. It is possible to initiate...

CVE-2023-39807

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a SQL injection vulnerability via the apasswd parameter at /portal/user-register.php...

CVE-2024-1825

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input leads to cross site scripting. It is possible to initiate...

CVE-2024-1825

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input leads to cross site scripting. It is possible to initiate...

Cross site scripting

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input leads to cross site scripting. It is possible to initiate...

House Rental Management System Cross-Site Scripting Vulnerability

House Rental Management System is a house rental management system from the individual developer Carlo Montero. A cross-site scripting vulnerability exists in CodeAstro House Rental Management System version 1.0, which stems from the cross-site scripting caused by the address parameter of the...

CVE-2023-37759

The CVE-2023-37759 entry concerns Crypto Currency Tracker (CCT) prior to v9.5, where an improper access control in the User Registration page allows unauthenticated attackers to create an Admin account. The vulnerability is triggered via a crafted POST to /en/user/register (as shown in Exploit-DB...

Monstra CMS Cross-Site Scripting Vulnerability (CNVD-2019-03472)

Monstra CMS is a lightweight PHP-based content management system CMS developed by Ukrainian software developer Sergey Romanenko. The system is easy to install and use, scalable and so on. A cross-site scripting vulnerability exists in the 'password' parameter of the users/registration page in...

CVE-2018-9147

Cross-site scripting XSS vulnerabilities in version 7.5.7 of Gespage software allow remote attackers to inject arbitrary web script or HTML via the email, passwd, and repasswd parameters to webapp/users/userreg.jsp...

agoracosmopolitan.com XSS vulnerability

Open Bug Bounty ID: OBB-488439 Description| Value ---|--- Affected Website:| agoracosmopolitan.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosu...