152 matches found
jshERP 安全漏洞
jshERP Huaxia ERP is a homegrown ERP system by the individual developer of Ji Sheng Hua in China. A security vulnerability exists in jshERP Huaxia ERP version 3.5 and earlier, which stems from an improper authorization issue in the file /jshERP-boot/user/addUser...
Simple Pizza Ordering System adduser-exec.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of an externally entered SQL statement in the parameter Username in the file /adduser-exec.php. An attacker can exploit th...
CVE-2025-6364
A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /adduser-exec.php. The manipulation of the argument Username leads to sql injection. The attack can be launched...
CVE-2025-6364 code-projects Simple Pizza Ordering System adduser-exec.php sql injection
A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /adduser-exec.php. The manipulation of the argument Username leads to sql injection. The attack can be launched...
CVE-2025-6364 code-projects Simple Pizza Ordering System adduser-exec.php sql injection
A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /adduser-exec.php. The manipulation of the argument Username leads to sql injection. The attack can be launched...
Code-Projects Simple Pizza Ordering System 安全漏洞
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of an externally entered SQL statement in the parameter Username in the file /adduser-exec.php. An attacker can exploit th...
CVE-2023-27095
Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module...
CVE-2020-35245
Flamingo aka FlamingoIM through 2020-09-29 has a SQL injection vulnerability in UserManager::addUser...
CVE-2020-21366
Cross Site Request Forgery vulnerability in GreenCMS v.2.3 allows an attacker to gain privileges via the adduser function of index.php...
CVE-2015-10020
A vulnerability has been found in ssn2013 cis450Project and classified as critical. This vulnerability affects the function addUser of the file HeatMapServer/src/com/datformers/servlet/AddAppUser.java. The manipulation leads to sql injection. The name of the patch is...
TeaCMS 安全漏洞
TeaCMS is a blogging system by xiaobingby personal developer. A security vulnerability exists in TeaCMS version 2.0.2, which originates from an improperly functioning file src/main/java/me/teacms/controller/admin/UserManageController/addUser, which may lead to cross-site request forgery...
CVE-2025-4889 code-projects Tourism Management System User Registration AddUser buffer overflow
A vulnerability has been found in code-projects Tourism Management System 1.0 and classified as critical. This vulnerability affects the function AddUser of the component User Registration. The manipulation of the argument username/password leads to buffer overflow. Local access is required to...
CVE-2025-25709
An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker to escalate privileges via the addUser and updateUser endpoints...
CVE-2025-25709
An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker to escalate privileges via the addUser and updateUser endpoints...
CVE-2025-25709
Technical details beyond the reported description are not publicly available in the provided connected documents. Monitor for updates from the vendor and CVE databases for affected product/version, impact, and fixes.
DTP tNexus Airport View 安全漏洞
DTP tNexus Airport View is an application from DTP that helps airport users track and monitor operational information. It is used to track operational updates to enhance airport operations and passenger experience. A security vulnerability exists in DTP tNexus Airport View version 2.8, which stem...
CVE-2025-25709
An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker to escalate privileges via the addUser and updateUser endpoints...
CVE-2024-48708
Collabtive 3.1 is vulnerable to Cross-Site Scripting XSS via the name parameter in a file tasklist.php under action = add/edit and in b file admin.php under action = adduser/edituser...
Malicious code in sap-adduser (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-9812 Malicious code in sap-adduser (npm)
--- -= Per source details. Do not edit below this line.=-...