CVE-2026-30498

A Cross-Site Request Forgery CSRF vulnerability was discovered in the delete.php endpoint of Jason2605 AdminPanel 4.0...

PT-2026-43996

A Cross-Site Request Forgery CSRF vulnerability was discovered in the delete.php endpoint of Jason2605 AdminPanel 4.0...

CVE-2026-30498

A Cross-Site Request Forgery CSRF vulnerability was discovered in the delete.php endpoint of Jason2605 AdminPanel 4.0...

CVE-2026-30498

A Cross-Site Request Forgery CSRF vulnerability was discovered in the delete.php endpoint of Jason2605 AdminPanel 4.0...

CVE-2026-30498

A Cross-Site Request Forgery CSRF vulnerability was discovered in the delete.php endpoint of Jason2605 AdminPanel 4.0...

EUVD-2020-5686

Malware in sbrugna...

EUVD-2017-6098

Malware in sbrugna...

PT-2025-37919

Name of the Vulnerable Software and Affected Versions: Kashipara Computer Base Test version 1.0 Description: A Stored Cross-Site Scripting XSS vulnerability exists in the /users/adminpanel/admin/home.php?page=feedbacks file. Attackers can inject malicious scripts via the smyFeedbacks POST paramet...

CVE-2020-13433

Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter...

CVE-2017-14597

AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain...

CVE-2024-2945

A vulnerability was found in Campcodes Online Examination System 1.0. It has been classified as critical. Affected is an unknown function of the file /adminpanel/admin/faceboxmodal/updateExaminee.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

CVE-2021-46117

jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.page.PageNotifyKitdoSendEmail. The admin panel provides a function through which attackers can edit the email templates and inject some malicious code...

CVE-2020-13433

Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter...

CVE-2020-13433

Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter...

Sql injection

Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter...

CVE-2020-13433

Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter...

CVE-2020-13433

CVE-2020-13433 affects Jason2605 AdminPanel 4.0 and is a SQL injection vulnerability exploitable through the hidden editPlayer.php parameter. Public sources in the Connected documents describe the root cause as a lack of validation of externally entered SQL statements, enabling partial to high-im...

ahserver (>=1.0.1 <=1.2.0), aiohttp-admin (>=0.1.0a0 <=0.1.0a3) +65 more potentially affected by CVE-2018-1000814 via aiohttp-session (>=0.8.0 <=2.1.0)

aiohttp-session PYPI version =0.8.0, =1.0.1, =0.1.0a0, =1.0.0, =0.0.1, =1.4.0, =0.3.0, =0.4.3, =0.0.1, =0.1.0, =1.0.0, =0.0.1, =22.3.0, =0.0.1, =0.0.2 and more Source cves: CVE-2018-1000814 Source advisory: OSV:PYSEC-2018-35...

imaginevip.com XSS vulnerability

Open Bug Bounty ID: OBB-572592 Description| Value ---|--- Affected Website:| imaginevip.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

AfterLogic Aurora / Webmail XSS Vulnerability (Aug 2017)

AfterLogic Aurora/WebMail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX =...