57 matches found
EUVD-2025-15075
Malicious code in bioql PyPI...
EUVD-2024-44105
Malicious code in bioql PyPI...
EUVD-2024-33707
Malicious code in bioql PyPI...
EUVD-2024-16769
Malicious code in bioql PyPI...
EUVD-2024-49031
Malicious code in bioql PyPI...
EUVD-2025-7425
Malicious code in bioql PyPI...
EUVD-2025-1710
Malicious code in bioql PyPI...
EUVD-2024-47946
Malicious code in bioql PyPI...
CVE-2025-8502
A vulnerability classified as critical was found in code-projects Online Medicine Guide 1.0. Affected by this vulnerability is an unknown functionality of the file /changepass.php. The manipulation of the argument ups leads to sql injection. The attack can be launched remotely. The exploit has be...
CVE-2025-7859 code-projects Church Donation System update_password_admin.php sql injection
A vulnerability classified as critical was found in code-projects Church Donation System 1.0. This vulnerability affects unknown code of the file /members/updatepasswordadmin.php. The manipulation of the argument newpassword leads to sql injection. The attack can be initiated remotely. The exploi...
CVE-2025-7757
CVE-2025-7757 affects PHPGurukul Land Record System 1.0. The vulnerability exists in an unknown functionality of /edit-property.php where the editid parameter can be manipulated to cause SQL injection. The issue can be exploited remotely and the exploit has been disclosed publicly. Multiple conne...
CVE-2025-7532
A vulnerability has been found in Tenda FH1202 1.2.0.14408 and classified as critical. This vulnerability affects the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated...
CVE-2025-7612 code-projects Mobile Shop login.php sql injection
A vulnerability was found in code-projects Mobile Shop 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...
CVE-2025-7560 PHPGurukul Online Fire Reporting System workin-progress-requests.php sql injection
A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been declared as critical. This vulnerability affects unknown code of the file /admin/workin-progress-requests.php. The manipulation of the argument teamid leads to sql injection. The attack can be initiated remotely...
CVE-2025-7516
A vulnerability classified as critical was found in code-projects Online Appointment Booking System 1.0. This vulnerability affects unknown code of the file /cancelbookingpatient.php. The manipulation of the argument appointment leads to sql injection. The attack can be initiated remotely. The...
CVE-2025-7516
The CVE-2025-7516 entry concerns code-projects Online Appointment Booking System 1.0. The vulnerability is a SQL injection in the file /cancelbookingpatient.php, triggered by manipulating the appointment parameter. It is remotely exploitable, with an exploit publicly disclosed. Affected component...
CVE-2025-7509 code-projects Modern Bag slide.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Modern Bag 1.0. This affects an unknown part of the file /admin/slide.php. The manipulation of the argument idSlide leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2025-6912
CVE-2025-6912 affects PHPGurukul Student Record System 3.2. The vulnerability is a SQL injection in /manage-students.php triggered by manipulating the del argument, enabling remote exploitation. Multiple sources consistently describe the issue as a critical SQL injection with an attacker able to ...
CVE-2025-6834
CVE-2025-6834 affects code-projects Inventory Management System 1.0. The vulnerability is an SQL injection in the file /php_action/editPayment.php caused by unsafely handling the orderId parameter. It can be exploited remotely with no user interaction required. Multiple connected sources confirm ...
CVE-2025-6735 juzaweb CMS Import Page imports improper authorization
A vulnerability classified as critical has been found in juzaweb CMS 3.4.2. Affected is an unknown function of the file /admin-cp/imports of the component Import Page. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to...