Lucene search
K

315 matches found

EUVD
EUVD
added 2026/06/29 10:15 a.m.6 views

EUVD-2026-40067

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...

5.1CVSS4.5AI score0.00328EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/29 10:15 a.m.5 views

CVE-2026-13558

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...

5.1CVSS4.5AI score0.00328EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/06/29 9:16 a.m.10 views

CVE-2026-13549

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...

6.4CVSS0.00293EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 8:0 a.m.37 views

CVE-2026-13549 CodeAstro Complaint Management System Report Endpoint Report.php deletereport authorization

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...

6.4CVSS0.00293EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 8:0 a.m.6 views

EUVD-2026-40051

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...

6.4CVSS5.8AI score0.00293EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 8:0 a.m.16 views

CVE-2026-13549

CodeAstro Complaint Management System 1.0 has a vulnerability in the Report Endpoint, specifically the deletereport function in application/controllers/Report.php. The manipulation of this function results in authorization bypass and can be exploited remotely; evidence indicates the exploit is pu...

6.4CVSS5.8AI score0.00293EPSS
Exploits0References6
CNVD
CNVD
added 2025/11/20 12:0 a.m.3 views

Complaint Management System reset-password.php File SQL Injection Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the email and mobileno parameters of reset-password.php. An attacker can exploit this...

6.5CVSS8.3AI score0.00215EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.2 views

Complaint Management System between-date-userreport.php file SQL Injection Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the fromdate and todate parameters in between-date-userreport.php. An attacker can...

6.5CVSS8.3AI score0.00215EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.3 views

Complaint Management System user-search.php File Cross-Site Scripting Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the search parameter of user-search.php, which can be exploited to...

6.1CVSS6.3AI score0.00196EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.5 views

Complaint Management System subcategory.php File SQL Injection Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that stems from the lack of validation of the subcategory and category parameters in subcategory.php against externally entered SQL statements. The vulnerability ca...

6.5CVSS8.3AI score0.00215EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/18 12:11 a.m.17 views

CVE-2024-46335

PHPGurukul Complaint Management System 2.0 is vulnerble to Cross Site Scripting XSS via the fromdate and todate parameters in between-date-userreport.php...

4.6CVSS6.2AI score0.00175EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/18 12:11 a.m.17 views

CVE-2024-44658

PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the subcategory and category parameters in subcategory.php...

6.5CVSS8AI score0.00215EPSS
Exploits1References1
OSV
OSV
added 2025/11/17 7:16 p.m.6 views

CVE-2024-44655

PHPGurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS via the search parameter in user-search.php...

6.1CVSS5.8AI score0.00196EPSS
Exploits1References2
NVD
NVD
added 2025/11/17 7:16 p.m.5 views

CVE-2024-44655

PHPGurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS via the search parameter in user-search.php...

6.1CVSS0.00196EPSS
Exploits1References2
NVD
NVD
added 2025/11/17 7:16 p.m.5 views

CVE-2024-44658

PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the subcategory and category parameters in subcategory.php...

6.5CVSS0.00215EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.9 views

CVE-2024-44655

PHPGurukul Complaint Management System 2.0 is vulnerable to Cross Site Scripting XSS via the search parameter in user-search.php...

0.00196EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.6 views

PT-2025-47190

Name of the Vulnerable Software and Affected Versions PHPGurukul Complaint Management System version 2.0 Description The software is susceptible to a SQL Injection issue through the fromdate and todate parameters in the 'between-date-userreport.php' file. The issue allows for potential unauthoriz...

6.5CVSS7.5AI score0.00215EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.6 views

CVE-2024-44657

PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the fromdate and todate parameters in between-date-userreport.php...

0.00215EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.5 views

PHPGurukul Complaint Management System 安全漏洞

Complaint Management System is a complaint management system. Complaint Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the fromdate and todate parameters in between-date-userreport.php, whic...

4.6CVSS6.2AI score0.00175EPSS
Exploits1References3
EUVD
EUVD
added 2025/11/17 12:0 a.m.4 views

EUVD-2024-55096

PHPGurukul Complaint Management System 2.0 is vulnerable to SQL Injection via the fromdate and todate parameters in between-date-userreport.php...

6.5CVSS7.5AI score0.00215EPSS
Exploits1References3
Rows per page
Query Builder