Lucene search
K

4 matches found

CVE
CVE
added 2025/03/06 6:41 p.m.48 views

CVE-2025-25191

CVE-2025-25191 affects Group-Office Group Office CRM: a Stored XSS via the Name field due to insufficient sanitization before storage. Fixed in version 6.8.100. No exploitation details are provided in the connected documents.

6.9CVSS6AI score0.00614EPSS
Exploits1References2Affected Software1
Packet Storm
Packet Storm
added 2023/08/22 12:0 a.m.274 views

Taskhub CRM Tool 2.8.6 SQL Injection

Exploit Title: Taskhub CRM Tool 2.8.6 - SQL Injection Date: 2023-08-12 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/taskhub-project-management-finance-crm-tool/25685874 Tested on: Kali Linux & MacOS CVE: N/A Request GET /projects?filter=notstarted HTTP/1.1 Host: localhost...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2023/08/21 12:0 a.m.290 views

Taskhub CRM Tool 2.8.6 - SQL Injection

Exploit Title: Taskhub CRM Tool 2.8.6 - SQL Injection Date: 2023-08-12 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/taskhub-project-management-finance-crm-tool/25685874 Tested on: Kali Linux & MacOS CVE: N/A Request GET /projects?filter=notstarted HTTP/1.1 Host: localhost...

7.4AI score
Exploits0
Talos
Talos
added 2021/04/08 12:0 a.m.239 views

Rukovoditel Project Management App application SQL injection vulnerability in the 'global_lists/choices' page

Summary An exploitable SQL injection vulnerability exists in ‘globallists/choices’ page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability, this can be done...

8.8CVSS7.3AI score0.03174EPSS
Exploits1
Rows per page
Query Builder