CVE-2026-7143

A vulnerability was identified in 1000 Projects Portfolio Management System MCA up to 1.0. This affects an unknown function of the file /admin/blockstatus.php. The manipulation of the argument q leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and...

CVE-2026-7143

A vulnerability was identified in 1000 Projects Portfolio Management System MCA up to 1.0. This affects an unknown function of the file /admin/blockstatus.php. The manipulation of the argument q leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and...

CVE-2026-7143

CVE-2026-7143 affects the 1000 Projects Portfolio Management System MCA (up to version 1.0). The vulnerability is located in an unknown function of the file /admin/block_status.php, where improper handling of the q parameter enables SQL injection. A remote attacker could exploit this, and publicl...

1000 Projects Portfolio Management System MCA 注入漏洞

The 1000 Projects Portfolio Management System MCA is an open-source combination management system developed by 1000 Projects. Versions of the 1000 Projects Portfolio Management System MCA, including version 1.0 and earlier, had a SQL injection vulnerability. This vulnerability stemmed from the...

PT-2026-35498

A vulnerability was identified in 1000 Projects Portfolio Management System MCA up to 1.0. This affects an unknown function of the file /admin/block status.php. The manipulation of the argument q leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and...

CVE-2026-1517

A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue...

CVE-2026-1517

A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue...

CVE-2026-1517

A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue...

CVE-2026-1517 iomad Company Admin Block sql injection

A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue...

CVE-2026-1517

CVE-2026-1517 affects iomad up to version 5.0, specifically an unknown function within the Company Admin Block that enables SQL injection. The vulnerability can be exploited remotely; CVSS metrics indicate network attack vector, low attack complexity, and high privileges required. Documented impa...

EUVD-2026-5535

A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue...

CVE-2026-1517 iomad Company Admin Block sql injection

A vulnerability was identified in iomad up to 5.0. Affected is an unknown function of the component Company Admin Block. Such manipulation leads to sql injection. The attack can be executed remotely. It is best practice to apply a patch to resolve this issue...

Moodle 安全漏洞

Moodle is an open-source e-learning software platform developed by Moodle. It is also known as a course management system, learning management system, or virtual learning environment. Versions of Moodle 5.0 and earlier contained security vulnerabilities. These vulnerabilities were caused by...

PT-2026-6550

Name of the Vulnerable Software and Affected Versions iomad versions prior to 4.5 LTS iomad versions prior to 5.0 Description A flaw exists in iomad that allows for remote execution of SQL injection attacks. The issue resides within an unknown function of the Company Admin Block component...

EUVD-2023-28071

Malicious code in bioql PyPI...

CVE-2023-24007

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

CVE-2023-24007

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

CVE-2023-24007

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

CVE-2023-24007

CVE-2023-24007 is a CSRF vulnerability in the WordPress plugin Admin Block Country (TheOnlineHero Tom Skroza) with affected versions up to 7.1.4. The issue stems from Cross-Site Request Forgery in the plugin, enabling unauthorized actions when a user is authenticated. Public sources in the connec...