Lucene search
K

19 matches found

CNVD
CNVD
added 2025/10/31 12:0 a.m.3 views

Curfew e-Pass Management System edit-category-detail.php file cross-site scripting vulnerability

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter catname in the file...

4.8CVSS6.2AI score0.00237EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/28 7:53 p.m.5 views

CVE-2025-12311

A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. The attack can be launched remotely. The exploit is now public...

4.8CVSS5.7AI score0.00237EPSS
Exploits1References1
OSV
OSV
added 2025/10/27 8:15 p.m.4 views

CVE-2025-12311

A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. The attack can be launched remotely. The exploit is now public...

4.8CVSS4.2AI score0.00237EPSS
Exploits1References5
NVD
NVD
added 2025/10/27 8:15 p.m.20 views

CVE-2025-12311

A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. The attack can be launched remotely. The exploit is now public...

4.8CVSS0.00237EPSS
Exploits1References5
CVE
CVE
added 2025/10/27 7:32 p.m.18 views

CVE-2025-12311

The CVE-2025-12311 entry relates to a cross-site scripting (XSS) flaw in PHPGurukul Curfew e-Pass Management System 1.0, caused by unsafely handling the catname argument in edit-category-detail.php. Technical sources from CNVD, RH, NVD/CVE records, CNNVD, and others confirm the vulnerability stem...

4.8CVSS3.4AI score0.00237EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/27 7:32 p.m.4 views

CVE-2025-12311 PHPGurukul Curfew e-Pass Management System edit-category-detail.php cross site scripting

A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. The attack can be launched remotely. The exploit is now public...

4.8CVSS3.4AI score0.00237EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/27 7:32 p.m.9 views

CVE-2025-12311 PHPGurukul Curfew e-Pass Management System edit-category-detail.php cross site scripting

A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. The attack can be launched remotely. The exploit is now public...

4.8CVSS0.00237EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/27 7:32 p.m.4 views

EUVD-2025-36345

A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. The attack can be launched remotely. The exploit is now public...

4.8CVSS3AI score0.00237EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.8 views

PT-2025-44023

Name of the Vulnerable Software and Affected Versions PHPGurukul Curfew e-Pass Management System version 1.0 Description A security issue exists in PHPGurukul Curfew e-Pass Management System. The issue involves the processing of the edit-category-detail.php file. Manipulation of the catname...

4.8CVSS2.6AI score0.00237EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.5 views

PHPGurukul Curfew e-Pass Management System 代码注入漏洞

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter catname in the file...

4.8CVSS6.1AI score0.00237EPSS
Exploits1References6
OSV
OSV
added 2025/06/29 3:15 p.m.10 views

CVE-2025-6863

A vulnerability classified as critical was found in PHPGurukul Local Services Search Engine Management System 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/edit-category-detail.php. The manipulation of the argument editid leads to sql injection. The attack can...

9.8CVSS5.8AI score0.00399EPSS
Exploits1References5
CNVD
CNVD
added 2025/06/11 12:0 a.m.2 views

Curfew e-Pass Management System /admin/edit-category-detail.php File SQL Injection Vulnerability

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter editid in the file /admin/edit-category-detail.ph...

9.8CVSS8.3AI score0.00399EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/04 12:0 a.m.4 views

PHPGurukul Curfew e-Pass Management System 注入漏洞

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter editid in the file /admin/edit-category-detail.ph...

9.8CVSS8.2AI score0.00399EPSS
Exploits1References5
NVD
NVD
added 2023/07/28 2:15 p.m.22 views

CVE-2023-31937

Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file...

7.2CVSS7.3AI score0.0093EPSS
Exploits1References1
NVD
NVD
added 2022/08/22 1:15 a.m.17 views

CVE-2022-36198

Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and...

9.8CVSS0.00988EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/08/22 1:15 a.m.2 views

CVE-2022-36198

Multiple SQL injections detected in Bus Pass Management System 1.0 via buspassms/admin/view-enquiry.php, buspassms/admin/pass-bwdates-reports-details.php, buspassms/admin/changeimage.php, buspassms/admin/search-pass.php, buspassms/admin/edit-category-detail.php, and...

9.8CVSS7.4AI score0.00988EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2022/05/13 1:12 a.m.23 views

Moodle allows attackers to obtain sensitive category-detail information

lib/ajax/getnavbranch.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3, when the forcelogin feature is enabled, allows remote attackers to obtain sensitive category-detail information from the navigation branch by leveraging the...

4.3CVSS6.3AI score0.01708EPSS
Exploits0References11Affected Software1
0day.today
0day.today
added 2021/03/03 12:0 a.m.23 views

Local Services Search Engine Management System (LSSMES) 1.0 - (name) XSS Vulnerability

Exploit Title: Local Services Search Engine Management System LSSMES 1.0 - 'name' Persistent Cross-Site Scripting XSS Exploit Author: Tushar Vaidya Vendor Homepage: https://phpgurukul.com/local-services-search-engine-management-system-using-php-and-mysql/ Software Link:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/07/31 12:0 a.m.27 views

Article Friendly Pro/Standard (Cat) Remote SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability Article Friendly Pro categorydetail.php Cat Article Friendly Standard authordetail.php autid http://www.articlefriendly.com/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM Email : [email protected]...

7.1AI score
Exploits0
Rows per page
Query Builder