6 matches found
EUVD-2025-25481
Malicious code in bioql PyPI...
CVE-2025-57764
WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, a Reflected Cross-Site Scripting XSS vulnerability was identified in the cargos.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the msge parameter. This vulnerability is...
WeGIA 安全漏洞
WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. A security vulnerability exists in WeGIA versions prior to 3.4.7, which stems from the presence of reflective cross-site scripting in the msge parameter in the cargos.php endpoint, which could lead to...
CVE-2019-25159
A vulnerability was found in mpedraza2020 Intranet del Monterroso up to 4.50.0. It has been classified as critical. This affects an unknown part of the file config/cargos.php. The manipulation of the argument dniprofe leads to sql injection. Upgrading to version 4.51.0 is able to address this...
Sql injection
A vulnerability was found in mpedraza2020 Intranet del Monterroso up to 4.50.0. It has been classified as critical. This affects an unknown part of the file config/cargos.php. The manipulation of the argument dniprofe leads to sql injection. Upgrading to version 4.51.0 is able to address this...
CVE-2019-25159
The CVE-2019-25159 entry concerns mpedraza2020 Intranet del Monterroso versions up to 4.50.0. The vulnerability arises from a SQL injection in the dni_profe argument within the file config/cargos.php. Exploitation could allow an attacker to manipulate the database without authentication. Remediat...