EUVD-2025-16269

Malicious code in bioql PyPI...

CVE-2025-5179

The CVE-2025-5179 entry describes a cross-site scripting vulnerability in Realce Tecnologia Queue Ticket Kiosk up to 20250517. The flaw affects an unknown functionality in /adm/index.php of the Cadastro de Administrador Page, where manipulating the Name/Usuário parameter enables XSS. The issue is...

CVE-2025-5179 Realce Tecnologia Queue Ticket Kiosk Cadastro de Administrador Page index.php cross site scripting

A vulnerability classified as problematic was found in Realce Tecnologia Queue Ticket Kiosk up to 20250517. Affected by this vulnerability is an unknown functionality of the file /adm/index.php of the component Cadastro de Administrador Page. The manipulation of the argument Name/Usuário leads to...

JSPMySQL Administrador CSRF & XSS Vulnerabilities

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-JSPMYSQLADMINISTRADOR-0904.txt Vendor: ================================ JSPMySQL Administrador https://sites.google.com/site/mfpledon/producao-de-software Product:...

JSPMySQL Administrador Cross-Site Scripting Vulnerability

JSPMySQL Administrador is a JSP technology Web server MySQL database remote management tools . JSP/MySQL Administrador Web 1 in the implementation of a cross-site scripting vulnerability , remote attackers through the sys/sys/listaBD2.jsp bd parameter , the use of this vulnerability can be inject...

CVE-2015-6945

Cross-site scripting XSS vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to inject arbitrary web script or HTML via the bd parameter to sys/sys/listaBD2.jsp...

CVE-2015-6944

Cross-site request forgery CSRF vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp...

Cross site scripting

Cross-site scripting XSS vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to inject arbitrary web script or HTML via the bd parameter to sys/sys/listaBD2.jsp...

CVE-2015-6945

The CVE-2015-6945 entry concerns JSP/MySQL Administrador Web 1, a JSP-based MySQL web admin tool. Connected documents confirm a cross-site scripting (XSS) vulnerability where remote attackers can inject arbitrary script or HTML via the bd parameter to sys/listaBD2.jsp. Some sources also describe ...

CVE-2015-6944

CVE-2015-6944 describes a CSRF vulnerability in JSP/MySQL Administrador Web 1 that allows remote attackers to hijack user authentication and execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp. The affected software is JSP/MySQL Administrador Web (1.x) running on a JSP/My...

JSPMySQL Administrador CSRF & XSS Vulnerabilities

JSPMySQL Administrador，通过基于jsp技术的B/S模式来远程管理MySQL数据库。下载链接：https://sites.google.com/site/mfpledon/producao-de-software影响版本：JSPMySQL Administrador V.1漏洞类型：CSRF、XSS漏洞等级: 高危CVE-ID：N/A披露时间：供应商通知：2015年8月31日公开披露：2015年9月4日漏洞详情：1）允许远程攻击者在没有CSRF令牌的情况下，在MySQL数据库中执行任意的SQL命令。2）listabd2.jsp中存在XSS的切入点。请求方法：POST ...

JSPMySQL Administrador - Multiple Vulnerabilities

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-JSPMYSQLADMINISTRADOR-0904.txt Vendor: ================================ JSPMySQL Administrador https://sites.google.com/site/mfpledon/producao-de-software Product:...

JSPMySQL Administrador - Multiple Vulnerabilities

JSPMySQL Administrador - Multiple Vulnerabilities + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-JSPMYSQLADMINISTRADOR-0904.txt Vendor: ================================ JSPMySQL Administrador...

JSPMySQL Administrador CSRF & XSS Vulnerabilities

Exploit for php platform in category web applications Vendor: ================================ JSPMySQL Administrador https://sites.google.com/site/mfpledon/producao-de-software Product: ================================ JSPMySQL Administrador v.1 is a remote administration of MySQL databases that...

Administrador de Contenidos Admin Login Bypass vulnerability

No description provided by source...

Administrador de Contenidos - Admin Authentication Bypass

Administrador de Contenidos Admin Login Bypass vulnerability Prodcut: Administrador de Contenidos Home : www.DZ4All.cOm/Cc Vunlerability : Admin Bypass Risk : High Dork : "Diseño Web Hernest Consulting S.L." Discovred by: Ra3cH From : Algeria Contact : [email protected] Greetz to : ALLAH All Members...

Administrador de Contenidos Admin Login Bypass vulnerability

Exploit for asp platform in category web applications ============================================================ Administrador de Contenidos Admin Login Bypass vulnerability ============================================================ Administrador de Contenidos Admin Login Bypass vulnerability...

MS Windows (keybd_event) Local Privilege Elevation Exploit

No description provided by source. / Microsoft Windows keybdevent validation vulnerability. Local privilege elevation Credits: Andres Tarasco aT4r @ haxorcitos.com Iaki Lopez ilo @ reversing.org Platforms afected/tested: - Windows 2000 - Windows XP - Windows 2003 Original Advisory:...