22 matches found
EUVD-2025-16230
Malicious code in bioql PyPI...
EUVD-2025-16225
Malicious code in bioql PyPI...
EUVD-2025-16229
Malicious code in bioql PyPI...
EUVD-2025-16231
Malicious code in bioql PyPI...
EUVD-2025-16227
Malicious code in bioql PyPI...
CVE-2025-5136
A vulnerability, which was classified as problematic, was found in Tmall Demo up to 20250505. This affects an unknown part of the file /tmall/order/pay/ of the component Payment Identifier Handler. The manipulation leads to insufficiently random values. It is possible to initiate the attack...
CVE-2025-5132
A vulnerability was found in Tmall Demo up to 20250505. It has been rated as problematic. This issue affects some unknown processing of the file tmall/admin/account/logout. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-5131
A vulnerability was found in Tmall Demo up to 20250505. It has been declared as critical. This vulnerability affects the function uploadCategoryImage of the file tmall/admin/uploadCategoryImage. The manipulation of the argument File leads to unrestricted upload. The attack can be initiated...
CVE-2025-5132 Tmall Demo logout cross-site request forgery
A vulnerability was found in Tmall Demo up to 20250505. It has been rated as problematic. This issue affects some unknown processing of the file tmall/admin/account/logout. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-5130 Tmall Demo uploadProductImage unrestricted upload
A vulnerability was found in Tmall Demo up to 20250505. It has been classified as critical. This affects the function uploadProductImage of the file tmall/admin/uploadProductImage. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely...
CVE-2025-5130
CVE-2025-5130 affects Tmall Demo up to 20250505, specifically the uploadProductImage function in tmall/admin/uploadProductImage. The root cause is manipulation of the File argument enabling unrestricted image uploads, with remote exploitation possible and public disclosure of the exploit. Version...
PT-2025-22848 · Unknown · Tmall Demo
Name of the Vulnerable Software and Affected Versions: Tmall Demo up to 20250505 Description: A vulnerability has been found in the Search Box component of Tmall Demo, allowing for cross-site scripting through remote attack. The manipulation of an unknown function leads to this issue. The vendor...
PT-2025-22851 · Unknown · Tmall Demo
Name of the Vulnerable Software and Affected Versions: Tmall Demo up to 20250505 Description: A vulnerability was found in Tmall Demo, affecting an unknown part of the file /tmall/order/pay/ of the component Payment Identifier Handler. The manipulation leads to insufficiently random values. It is...
PT-2025-22846 · Unknown · Tmall Demo
Name of the Vulnerable Software and Affected Versions: Tmall Demo up to 20250505 Description: A critical vulnerability was found in Tmall Demo, affecting the uploadCategoryImage function of the file tmall/admin/uploadCategoryImage. The manipulation of the File argument leads to unrestricted uploa...
PT-2025-22849 · Unknown · Tmall Demo
Name of the Vulnerable Software and Affected Versions: Tmall Demo up to 20250505 Description: A problematic vulnerability was found in the Buy Item Page component of Tmall Demo, allowing for cross-site scripting through the manipulation of the Detailed Address argument. This issue can be exploite...
ClipShare 4.1.4 - Multiple Vulnerabilities
===================================================================== Vulnerable Software: ClipShare - Video Sharing Community Script 4.1.4 Official site: http://www.clip-share.com Software License: Commercial. Vulns: Blind SQl injection && Plaintext Password...
Joomla! Component com_ksadvertiser - SQL Injection
Joomla! Component comksadvertiser - SQL Injection Joomla Component comksadvertiser SQL Injection Vulnerability Author :FL0RiX Name : comksadvertiser Bug Type : SQL Injection Infection : Admin login bilgileri alinabilir. Demo Vuln :...
Mambo View Full Listing SQL Injection
Mambo Component comviewfulllisting SQL injection Vulnerability author : FL0RiX Greez : Deep-Power,PyskE,RuzgarinOglu,CWWarning0fvirüs & All My Friends Name : comviewfulllisting Bug Type : SQL Injection Infection : Admin login bilgileri alýnabilir. Demo Vuln. : TRUE+...
Joomla Oprykningspoint Mc Cross Site Scripting
Joomla Component comoprykningspointmc Cross Site Scripting Vulnerabilities Author : Pyske Name : comoprykningspointmc Home : www.cyber-warrior.org Greetz : Fl0riX , M-K-A , F0RTS3V3N , 3KB3R ,BARCOD3 and ALL Cyber-Warrior Bug Type : Cross Site Scripting Infection : Yönetici ve User cookiekleri...
Joomla Component com_facileforms Cross Site Scripting Vulnerabilities
Exploit for unknown platform in category web applications ===================================================================== Joomla Component comfacileforms Cross Site Scripting Vulnerabilities ===================================================================== Joomla Component comfacileform...