EUVD-2025-31432

Malicious code in bioql PyPI...

CVE-2025-11068

A vulnerability was found in westboy CicadasCMS 1.0. Affected by this vulnerability is an unknown functionality of the file /system/cms/category/save. The manipulation of the argument categoryName results in cross site scripting. The attack can be executed remotely. The exploit has been made publ...

CVE-2025-11068 westboy CicadasCMS save cross site scripting

A vulnerability was found in westboy CicadasCMS 1.0. Affected by this vulnerability is an unknown functionality of the file /system/cms/category/save. The manipulation of the argument categoryName results in cross site scripting. The attack can be executed remotely. The exploit has been made publ...

CVE-2025-11068

The CVE-2025-11068 entry affects westboy CicadasCMS 1.0, with the vulnerability located in the unknown functionality of /system/cms/category/save. The manipulation of the categoryName parameter results in cross-site scripting (XSS) that can be exploited remotely. Public exploit material exists, i...

PT-2025-39731

Name of the Vulnerable Software and Affected Versions westboy CicadasCMS version 1.0 Description A cross site scripting issue exists in an unknown functionality of the file /system/cms/category/save. The manipulation of the categoryName argument can lead to the execution of remote scripts. The...

CVE-2025-8740 zhenfeng13 My-Blog Category save cross site scripting

A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0. It has been classified as problematic. Affected is an unknown function of the file /admin/categories/save of the component Category Handler. The manipulation of the argument categoryName leads to cross site scripting. It is possible to...

PT-2025-32412 · Zhenfeng13 · Myblog

Name of the Vulnerable Software and Affected Versions: zhenfeng13 My-Blog versions up to 1.0.0 Description: A cross-site scripting issue exists in zhenfeng13 My-Blog up to version 1.0.0. The issue is related to the manipulation of the categoryName argument within an unknown function of the...

CVE-2025-4192

A vulnerability was found in itsourcecode Restaurant Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/categorysave.php. The manipulation of the argument Category leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-3334

A vulnerability was found in codeprojects Online Restaurant Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/categorysave.php. The manipulation of the argument Category leads to sql injection. The attack may be launched...

Code-Projects Online Restaurant Management System 安全漏洞

Code-Projects Online Restaurant Management System is a Code-Projects open source online restaurant management system. A security vulnerability exists in Code-Projects Online Restaurant Management System version 1.0, which originates from the improper handling of the parameter Category in the file...

CVE-2024-7275

A vulnerability, which was classified as critical, was found in itsourcecode Alton Management System 1.0. Affected is an unknown function of the file /admin/categorysave.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploi...

itsourcecode Alton Management System SQL注入漏洞

itsourcecode Alton Management System is an online restaurant management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Alton Management System, which is caused by an SQL injection vulnerability in the category function of the /admin/categorysave.php...

GHSA-882G-GJQP-9VJP Cross-Site Request Forgery in JFinalCMS via /admin/category/save

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/category/save...

CVE-2023-49396

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/category/save...

CVE-2023-49396

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/category/save...

CVE-2023-49396

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/category/save...

Cross site request forgery (csrf)

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/category/save...

JFinalCMS Security Vulnerability

JFinalCMS is a content management system by heyewei individual developer. A security vulnerability exists in JFinalCMS v5.0.0, which originates from a cross-site request forgery vulnerability in the /admin/category/save component...

CVE-2023-49396

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/category/save...

PT-2023-31202 · Jfinalcms · Jfinalcms

Name of the Vulnerable Software and Affected Versions: JFinalCMS version 5.0.0 Description: A Cross-Site Request Forgery CSRF issue was discovered in JFinalCMS. The vulnerability can be exploited via the "/admin/category/save" API endpoint. Recommendations: For JFinalCMS version 5.0.0, update to ...