EUVD-2025-16269

Malicious code in bioql PyPI...

CVE-2025-5179

The CVE-2025-5179 entry describes a cross-site scripting vulnerability in Realce Tecnologia Queue Ticket Kiosk up to 20250517. The flaw affects an unknown functionality in /adm/index.php of the Cadastro de Administrador Page, where manipulating the Name/Usuário parameter enables XSS. The issue is...

CVE-2025-5179 Realce Tecnologia Queue Ticket Kiosk Cadastro de Administrador Page index.php cross site scripting

A vulnerability classified as problematic was found in Realce Tecnologia Queue Ticket Kiosk up to 20250517. Affected by this vulnerability is an unknown functionality of the file /adm/index.php of the component Cadastro de Administrador Page. The manipulation of the argument Name/Usuário leads to...

JSPMySQL Administrador CSRF & XSS Vulnerabilities

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-JSPMYSQLADMINISTRADOR-0904.txt Vendor: ================================ JSPMySQL Administrador https://sites.google.com/site/mfpledon/producao-de-software Product:...

JSPMySQL Administrador Cross-Site Scripting Vulnerability

JSPMySQL Administrador is a JSP technology Web server MySQL database remote management tools . JSP/MySQL Administrador Web 1 in the implementation of a cross-site scripting vulnerability , remote attackers through the sys/sys/listaBD2.jsp bd parameter , the use of this vulnerability can be inject...

CVE-2015-6945

Cross-site scripting XSS vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to inject arbitrary web script or HTML via the bd parameter to sys/sys/listaBD2.jsp...

CVE-2015-6944

Cross-site request forgery CSRF vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp...

Cross site scripting

Cross-site scripting XSS vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to inject arbitrary web script or HTML via the bd parameter to sys/sys/listaBD2.jsp...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp...

CVE-2015-6945

The CVE-2015-6945 entry concerns JSP/MySQL Administrador Web 1, a JSP-based MySQL web admin tool. Connected documents confirm a cross-site scripting (XSS) vulnerability where remote attackers can inject arbitrary script or HTML via the bd parameter to sys/listaBD2.jsp. Some sources also describe ...

CVE-2015-6944

CVE-2015-6944 describes a CSRF vulnerability in JSP/MySQL Administrador Web 1 that allows remote attackers to hijack user authentication and execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp. The affected software is JSP/MySQL Administrador Web (1.x) running on a JSP/My...

JSPMySQL Administrador CSRF & XSS Vulnerabilities

JSPMySQL Administrador，通过基于jsp技术的B/S模式来远程管理MySQL数据库。下载链接：https://sites.google.com/site/mfpledon/producao-de-software影响版本：JSPMySQL Administrador V.1漏洞类型：CSRF、XSS漏洞等级: 高危CVE-ID：N/A披露时间：供应商通知：2015年8月31日公开披露：2015年9月4日漏洞详情：1）允许远程攻击者在没有CSRF令牌的情况下，在MySQL数据库中执行任意的SQL命令。2）listabd2.jsp中存在XSS的切入点。请求方法：POST ...

JSPMySQL Administrador - Multiple Vulnerabilities

JSPMySQL Administrador - Multiple Vulnerabilities + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-JSPMYSQLADMINISTRADOR-0904.txt Vendor: ================================ JSPMySQL Administrador...

JSPMySQL Administrador - Multiple Vulnerabilities

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-JSPMYSQLADMINISTRADOR-0904.txt Vendor: ================================ JSPMySQL Administrador https://sites.google.com/site/mfpledon/producao-de-software Product:...

JSPMySQL Administrador CSRF & XSS Vulnerabilities

Exploit for php platform in category web applications Vendor: ================================ JSPMySQL Administrador https://sites.google.com/site/mfpledon/producao-de-software Product: ================================ JSPMySQL Administrador v.1 is a remote administration of MySQL databases that...

Administrador de Contenidos Admin Login Bypass vulnerability

No description provided by source...

Administrador de Contenidos Admin Login Bypass vulnerability

Exploit for asp platform in category web applications ============================================================ Administrador de Contenidos Admin Login Bypass vulnerability ============================================================ Administrador de Contenidos Admin Login Bypass vulnerability...

Administrador de Contenidos - Admin Authentication Bypass

Administrador de Contenidos Admin Login Bypass vulnerability Prodcut: Administrador de Contenidos Home : www.DZ4All.cOm/Cc Vunlerability : Admin Bypass Risk : High Dork : "Diseño Web Hernest Consulting S.L." Discovred by: Ra3cH From : Algeria Contact : [email protected] Greetz to : ALLAH All Members...

MS Windows (keybd_event) Local Privilege Elevation Exploit

No description provided by source. / Microsoft Windows keybdevent validation vulnerability. Local privilege elevation Credits: Andres Tarasco aT4r @ haxorcitos.com Iaki Lopez ilo @ reversing.org Platforms afected/tested: - Windows 2000 - Windows XP - Windows 2003 Original Advisory:...