111 matches found
Cyber Cafe Management System add-users.php Endpoint Cross-Site Scripting Vulnerability
Cyber Cafe Management System is an internet cafe management system. A cross-site scripting vulnerability exists in Cyber Cafe Management System that stems from the username parameter of the add-users.php endpoint not adequately handling the input, no details of the vulnerability are available at...
Cyber Cafe Management System add-users.php Endpoint Cross-Site Scripting Vulnerability
Cyber Cafe Management System is an internet cafe management system. A cross-site scripting vulnerability exists in Cyber Cafe Management System that stems from the uadd parameter of the add-users.php endpoint not being sufficiently cleaned up or coded for user input, and for which no detailed...
CVE-2025-70893
A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1.0 within the adminprofile.php endpoint. The application fails to properly sanitize user-supplied input provided via the adminname parameter, allowing authenticated attackers to inject arbitrary SQL...
CVE-2025-70892
Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user management module. The application fails to properly validate user-supplied input in the username parameter of the add-users.php endpoint...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
CVE-2025-70890
The CVE-2025-70890 entry describes a stored XSS in Cyber Cafe Management System v1.0, via the username parameter of add-users.php. An authenticated attacker can inject JavaScript that is stored and executed when the affected page is viewed. The CVSS 3.1 vector: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...
PHPGurukul Cyber Cafe Management System 安全漏洞
Cyber Cafe Management System is an internet cafe management system. A cross-site scripting vulnerability exists in Cyber Cafe Management System that stems from the uadd parameter of the add-users.php endpoint not being sufficiently cleaned up or coded for user input, and for which no detailed...
PT-2026-3114
Name of the Vulnerable Software and Affected Versions Cyber Cafe Management System version 1.0 Description A stored cross-site scripting XSS issue exists. An authenticated attacker can inject arbitrary JavaScript code into the username parameter through the ''/add-users.php'' endpoint. The inject...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
PT-2026-3117
Name of the Vulnerable Software and Affected Versions PHPGurukul Cyber Cafe Management System version 1.0 Description The application does not properly sanitize user-supplied input provided via the adminname parameter in the /adminprofile.php endpoint, which can allow authenticated attackers to...
CVE-2025-70893
A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1.0 within the adminprofile.php endpoint. The application fails to properly sanitize user-supplied input provided via the adminname parameter, allowing authenticated attackers to inject arbitrary SQL...
CVE-2025-70890
A stored cross-site scripting XSS vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the...
Cyber Cafe Management System search.php file cross-site scripting vulnerability
Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter searchdata in the file /search.php, which can be...
CVE-2025-11390 PHPGurukul Cyber Cafe Management System POST Parameter search.php cross site scripting
A weakness has been identified in PHPGurukul Cyber Cafe Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /search.php of the component POST Parameter Handler. Executing a manipulation of the argument searchdata can lead to cross site scripting. The atta...
PHPGurukul Cyber Cafe Management System 代码注入漏洞
Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter searchdata in the file /search.php, which can be...
PT-2025-40982
Name of the Vulnerable Software and Affected Versions PHPGurukul Cyber Cafe Management System version 1.0 Description A cross site scripting issue exists in PHPGurukul Cyber Cafe Management System. The issue is located in the /search.php file, specifically within the POST Parameter Handler...
EUVD-2025-13364
Malicious code in bioql PyPI...
EUVD-2024-28899
Malicious code in bioql PyPI...