72 matches found
PT-2026-35981
Merge PACS 7.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by crafting malicious HTML forms targeting the merge-viewer endpoint. Attackers can submit POST requests to /servlet/actions/merge-viewer/summary with login credentials to hija...
CVE-2026-36948
Sourcecodester Online Thesis Archiving System v1.0 is vulnerale to SQL injection in the file /otas/viewarchive.php...
EUVD-2026-22006
Sourcecodester Online Thesis Archiving System v1.0 is vulnerable to SQL injection in /otas/projectsperdepartment.php...
PT-2026-32396
Sourcecodester Online Thesis Archiving System v1.0 is vulnerale to SQL injection in the file /otas/view archive.php...
CVE-2026-36952
Sourcecodester Online Thesis Archiving System v1.0 is vulnerable to SQL injection in the file /otas/admin/curriculum/managecurriculum.php...
CVE-2026-36948
Sourcecodester Online Thesis Archiving System v1.0 is vulnerale to SQL injection in the file /otas/viewarchive.php...
CVE-2026-36948
Sourcecodester Online Thesis Archiving System v1.0 is vulnerale to SQL injection in the file /otas/viewarchive.php...
CVE-2026-36950
Sourcecodester Online Thesis Archiving System v1.0 is vulnerable to SQL injection in /otas/projectsperdepartment.php...
EUVD-2023-33662
Malicious code in bioql PyPI...
EUVD-2023-33664
Malicious code in bioql PyPI...
EUVD-2023-33666
Malicious code in bioql PyPI...
EUVD-2023-33663
Malicious code in bioql PyPI...
CVE-2025-27721
Unauthorized users can access INFINITT PACS System Manager without proper authorization, which could lead to unauthorized access to system resources...
CVE-2025-24489 INFINITT Healthcare INFINITT PACS Unrestricted Upload of File with Dangerous Type
An attacker could exploit this vulnerability by uploading arbitrary files via a specific service, which could lead to system compromise...
CVE-2025-27714 INFINITT Healthcare INFINITT PACS Unrestricted Upload of File with Dangerous Type
An attacker could exploit this vulnerability by uploading arbitrary files via the a specific endpoint, leading to unauthorized remote code execution or system compromise...
CVE-2025-27721 INFINITT Healthcare INFINITT PACS Exposure of Sensitive System Information to an Unauthorized Control Sphere
Unauthorized users can access INFINITT PACS System Manager without proper authorization, which could lead to unauthorized access to system resources...
CVE-2025-53948
The Sante PACS Server allows a remote attacker to crash the main thread by sending a crafted HL7 message, causing a denial-of-service condition. The application would require a manual restart and no authentication is required...
CVE-2023-2145
A vulnerability was found in Campcodes Online Thesis Archiving System 1.0. It has been classified as critical. Affected is an unknown function of the file projectspercurriculum.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The explo...
CVE-2023-2147
A vulnerability was found in Campcodes Online Thesis Archiving System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/students/viewdetails.php. The manipulation of the argument id leads to sql injection. The attack may be launched...
CVE-2023-2148
A vulnerability classified as critical has been found in Campcodes Online Thesis Archiving System 1.0. This affects an unknown part of the file /admin/curriculum/viewcurriculum.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...