12 matches found
EUVD-2008-7140
Malware in sbrugna...
EUVD-2025-30785
Malicious code in bioql PyPI...
CVE-2025-10793
A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/adminaccountdelete.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-10793
A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/adminaccountdelete.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-10793
A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/adminaccountdelete.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-10793 code-projects E-Commerce Website admin_account_delete.php sql injection
A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/adminaccountdelete.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-10793 code-projects E-Commerce Website admin_account_delete.php sql injection
A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/adminaccountdelete.php. Performing manipulation of the argument userid results in sql injection. It is possible to initiate the attack remotely. The...
Code-Projects E-Commerce Website SQL注入漏洞
E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a SQL injection vulnerability that originates from the lack of validation of the userid parameter in the file /pages/adminaccountdelete.php for externally entered SQL statements. An attacker can exploit this vulnerabilit...
CVE-2023-0737
wallabag version 2.5.2 contains a Cross-Site Request Forgery CSRF vulnerability that allows attackers to arbitrarily delete user accounts via the /account/delete endpoint. This issue is fixed in version 2.5.4...
CVE-2023-0737
wallabag version 2.5.2 contains a Cross-Site Request Forgery CSRF vulnerability that allows attackers to arbitrarily delete user accounts via the /account/delete endpoint. This issue is fixed in version 2.5.4...
CVE-2023-0737
CVE-2023-0737 : wallabag 2.5.2 is vulnerable to a Cross-Site Request Forgery (CSRF) that allows attackers to arbitrarily delete user accounts via the /account/delete endpoint. The issue is fixed in version 2.5.4. Mitigation is to upgrade to 2.5.4 or later.
MicroPyramid Django-CRM Cross-Site Request Forgery Vulnerability
MicroPyramid Django-CRM is an open source customer relationship management system CRM based on the Django framework . A cross-site request forgery vulnerability exists in the /users/create/, /users//edit/, and /accounts//delete/ URIs in MicroPyramid Django-CRM version 0.2. A remote attacker can...