CVE-2025-14090

A security flaw has been discovered in AMTT Hotel Broadband Operation System 1.0. This affects an unknown part of the file /manager/card/cardmakedown.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

EUVD-2000-0861

Malware in sbrugna...

CVE-2025-5670 PHPGurukul Medical Card Generation System manage-card.php sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Medical Card Generation System 1.0. This issue affects some unknown processing of the file /admin/manage-card.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The...

Library Card System 注入漏洞

Library Card System is a library management system. A SQL injection vulnerability exists in Library Card System version 1.0, which originates from a lack of validation of the id parameter of the card.php file against externally entered SQL statements. An attacker can use this vulnerability to...

PT-2025-6889 · Unknown · Needyamin Library Card System

Name of the Vulnerable Software and Affected Versions: needyamin Library Card System version 1.0 Description: A critical issue affects some unknown functionality of the file card.php. The manipulation of the id argument leads to SQL injection. The attack may be launched remotely. The exploit has...

PT-2024-25669 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr versions prior to 19.0.2 Description: A Reflected Cross-site scripting XSS vulnerability is located in htdocs/compta/paiement/card.php, allowing remote attackers to inject arbitrary web script or HTML via a crafted payload injected...

CVE-2022-37794

In Library Management System 1.0 the /card/in-card.php file idno parameters are vulnerable to SQL injection...

CVE-2022-37794

In Library Management System 1.0 the /card/in-card.php file idno parameters are vulnerable to SQL injection...

CVE-2021-3615

A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow code execution if a specific file exists on the attached SD card. This vulnerability is the same as CNVD-2021-45262...

CVE-2021-3615

A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow code execution if a specific file exists on the attached SD card. This vulnerability is the same as CNVD-2021-45262...

UBUNTU-CVE-2019-16197

In htdocs/societe/card.php in Dolibarr 10.0.1, the value of the User-Agent HTTP header is copied into the HTML document as plain text between tags, leading to XSS...

Dolibarr SQL Injection Vulnerability (CNVD-2019-00361)

Dolibarr is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php file in...

Dolibarr cross-site scripting vulnerability (CNVD-2019-00724)

Dolibarr is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in the user/card.php file ...

PT-2019-9961 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A SQL injection issue allows remote authenticated users to execute arbitrary SQL commands via the employee parameter in the user/card.php file. Recommendations: For Dolibarr version 8.0.2, consider...

PT-2018-11830 · Dolibarr · Dolibarr Erp/Crm

Name of the Vulnerable Software and Affected Versions: Dolibarr ERP/CRM version 7.0.3 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the statut parameter in the product/card.php file. Recommendations: For Dolibarr ERP/CRM version 7.0.3, avoi...

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the function in the android operating system’s sdcard/sdcard.c file is related to the violation of boundary conditions in the algorithm. Exploiting this vulnerability allows a remote attacker to enhance their privileges through a specially created application...

CVE-2000-0874

Eudora mail client includes the absolute path of the sender's host within a virtual card VCF...