22 matches found
EUVD-2025-21347
Malicious code in bioql PyPI...
EUVD-2025-22993
Malicious code in bioql PyPI...
EUVD-2022-42844
Malicious code in bioql PyPI...
CVE-2025-40683
Reflected Cross-Site Scripting XSS in Human Resource Management System version 1.0. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the 'searccity' parameter in /city.php...
CVE-2025-7606 code-projects AVL Rooms city.php sql injection
A vulnerability classified as critical has been found in code-projects AVL Rooms 1.0. This affects an unknown part of the file /city.php. The manipulation of the argument city leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and...
CVE-2025-7606 code-projects AVL Rooms city.php sql injection
A vulnerability classified as critical has been found in code-projects AVL Rooms 1.0. This affects an unknown part of the file /city.php. The manipulation of the argument city leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and...
Code-Projects AVL Rooms 安全漏洞
Code-Projects AVL Rooms is an AVL room system from Code-Projects open source. A security vulnerability exists in Code-Projects AVL Rooms version 1.0, which stems from a SQL injection due to incorrect manipulation of the parameter city in the file /city.php...
CVE-2022-3472
A vulnerability was found in SourceCodester Human Resource Management System. It has been rated as critical. Affected by this issue is some unknown functionality of the file city.php. The manipulation of the argument cityedit leads to sql injection. The attack may be launched remotely. The exploi...
Sql injection
A vulnerability was found in SourceCodester Human Resource Management System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file city.php. The manipulation of the argument searccity leads to sql injection. The attack can be launched remotely...
Sql injection
A vulnerability was found in SourceCodester Human Resource Management System. It has been rated as critical. Affected by this issue is some unknown functionality of the file city.php. The manipulation of the argument cityedit leads to sql injection. The attack may be launched remotely. The exploi...
CVE-2022-3472
SourceCodester Human Resource Management System is affected by CVE-2022-3472 due to an SQL injection in the city.php component, triggered by manipulating the cityedit parameter. The issue is exploitable remotely and an exploit/PoC has been disclosed publicly. Affected versions are not specified i...
CVE-2022-3472 SourceCodester Human Resource Management System city.php sql injection
A vulnerability was found in SourceCodester Human Resource Management System. It has been rated as critical. Affected by this issue is some unknown functionality of the file city.php. The manipulation of the argument cityedit leads to sql injection. The attack may be launched remotely. The exploi...
CVE-2022-3471
CVE-2022-3471 affects SourceCodester Human Resource Management System; the city.php component’s searccity parameter is vulnerable to SQL injection. A remote attacker can exploit this vulnerability, and public PoCs/exploits are referenced in the records. Multiple connected sources confirm the issu...
CVE-2022-3472 SourceCodester Human Resource Management System city.php sql injection
A vulnerability was found in SourceCodester Human Resource Management System. It has been rated as critical. Affected by this issue is some unknown functionality of the file city.php. The manipulation of the argument cityedit leads to sql injection. The attack may be launched remotely. The exploi...
CVE-2022-3471 SourceCodester Human Resource Management System city.php sql injection
A vulnerability was found in SourceCodester Human Resource Management System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file city.php. The manipulation of the argument searccity leads to sql injection. The attack can be launched remotely...
allconferencealerts.org XSS vulnerability
Open Bug Bounty ID: OBB-666397 Description| Value ---|--- Affected Website:| allconferencealerts.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2017-17640
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter...
CVE-2017-17640
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter...
CVE-2017-17640
The CVE-2017-17640 entry concerns Advanced World Database 2.0.5, which is vulnerable to SQL Injection via the city.php and state.php parameters (country and state inputs). Multiple connected sources (CNVD-2017-37430, NVD entries) describe a remote injection path that can affect database queries t...
parti-pna.com XSS vulnerability
Open Bug Bounty ID: OBB-378656 Description| Value ---|--- Affected Website:| parti-pna.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...