3 matches found
EUVD-2025-28820
Malicious code in bioql PyPI...
CVE-2025-9168 SolidInvoice Invoice Creation invoice cross site scripting
A vulnerability was found in SolidInvoice up to 2.4.0. This issue affects some unknown processing of the file /invoice of the component Invoice Creation Module. The manipulation of the argument Client Name results in cross site scripting. The attack may be launched remotely. The exploit has been...
CVE-2025-5696
Affects Brilliance Golden Link Secondary System up to 20250424. The vulnerability stems from manipulating the clientname parameter in /storagework/rentChangeCheckInfoPage.htm, enabling SQL injection. Exploitation is remote; multiple sources confirm public disclosure and potential use. Impact is S...