18 matches found
EUVD-2018-17147
Malware in sbrugna...
EUVD-2017-9017
Malware in sbrugna...
EUVD-2015-1714
Malware in sbrugna...
EUVD-2023-2201
Malicious code in bioql PyPI...
CVE-2018-5375
Discuz! DiscuzX X3.4 has XSS via the include\spacecp\spacecpspace.php appid parameter in a delete action...
CVE-2025-3186
A vulnerability was found in projectworlds Online Doctor Appointment Booking System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /patient/invoice.php. The manipulation of the argument appid leads to sql injection. The attack can be...
Project Worlds Online Doctor Appointment Booking System 安全漏洞
Project Worlds Online Doctor Appointment Booking System is an online doctor appointment booking system from Project Worlds, Inc. A security vulnerability exists in Project Worlds Online Doctor Appointment Booking System version 1.0, which stems from an incorrect manipulation of the parameter appi...
PT-2025-14818 · Unknown · Projectworlds Online Doctor Appointment Booking System
Name of the Vulnerable Software and Affected Versions: projectworlds Online Doctor Appointment Booking System version 1.0 Description: A critical issue was found in the projectworlds Online Doctor Appointment Booking System. The vulnerability affects an unknown functionality of the file...
CVE-2024-10600
A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.6. Affected is an unknown function of the file pda/appcenter/submenu.php. The manipulation of the argument appid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
PowerJob incorrect access control vulnerability
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2023-36106
An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the interface for querying via appId parameter to /container/list...
CVE-2017-17870
The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action...
CVE-2017-17870
The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action...
CVE-2017-17870
CVE-2017-17870 affects the Joomla! JBuildozer extension version 1.4.1, where an SQL Injection occurs via the appid parameter in the entriessearch action. The vulnerability enables unauthenticated, network-based exploitation with high impact (C/H/I/A: High) as indicated in the CVSS metrics (CVSS v...
Joomla JBuildozer Component SQL Injection Vulnerability
Joomla! is a U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search, etc. JBuildozer extension is used in one of the Joomla! Joomla JBuildozer component SQL injection vulnerability. A remote attacker can exploit this...
CVE-2014-4603
Multiple cross-site scripting XSS vulnerabilities in yupdatesapplication.php in the Yahoo! Updates for WordPress plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 secret, 2 key, or 3 appid parameter...