CVE-2026-7090

A vulnerability was detected in code-projects Chat System 1.0. This affects an unknown function of the file /admin/sendmessage.php of the component Chat Interface. The manipulation of the argument msg results in cross site scripting. The attack may be launched remotely. The exploit is now public...

EUVD-2025-17474

Malicious code in bioql PyPI...

EUVD-2024-51292

Malicious code in bioql PyPI...

EUVD-2025-20647

Malicious code in bioql PyPI...

CVE-2025-7189

CVE-2025-7189 affects code-projects Chat System 1.0. The vulnerability is an SQL injection in the file /user/send_message.php, caused by lack of validation of the msg parameter. The issue can be exploited remotely and has publicly disclosed exploit information. Impact is described as potentially ...

CVE-2025-7188

CVE-2025-7188 concerns code-projects Chat System 1.0. The vulnerability affects the file /user/addmember.php where manipulating the ID parameter leads to a SQL injection. The issue is exploitable remotely and, according to the CVE entry, the exploit has been disclosed publicly. Multiple connected...

CVE-2025-0882

CVE-2025-0882 affects code-projects Chat System up to version 1.0, where the /user/addnewmember.php endpoint is vulnerable to SQL injection through the user parameter. Publicly disclosed exploit details and remote feasibility are noted, with potential to disclose or tamper with database data. Roo...