9 matches found
PT-2026-45271
A vulnerability has been found in raisulislamg4 student management system by php up to 310d950e09013d5133c6b9210aff9444382d16d1. The affected element is an unknown function of the file add user check.php of the component User Creation Handler. The manipulation of the argument role leads to sql...
CVE-2026-7670 Jinher OA UserSel.aspx sql injection
A flaw has been found in Jinher OA 1.0. The affected element is an unknown function of the file /C6/JHSoft.Web.PlanSummarize/UserSel.aspx. This manipulation of the argument DeptIDList causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may b...
CVE-2026-5249 gougucms Record Endpoint record.html cross site scripting
A vulnerability was found in gougucms 4.08.18. This impacts an unknown function of the file \gougucms-master\app\admin\view\user\record.html of the component Record Endpoint. Performing a manipulation of the argument value.content results in cross site scripting. It is possible to initiate the...
PT-2025-37776
Name of the Vulnerable Software and Affected Versions: pojoin h3blog versions prior to 5bf704425ebc11f4c24da51f32f36bb17ae20489 Description: A vulnerability exists due to cross site scripting. Manipulation of the X-Forwarded-For argument in the /login file, specifically within the ppt log functio...
PT-2025-32523 · Linksys · Linksys Re9000 +5
Name of the Vulnerable Software and Affected Versions: Linksys RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 versions up to 20250801 Description: A vulnerability exists in Linksys Wi-Fi range extender models. The issue resides in the langSwitchBack function of the /goform/langSwitchBack file...
CVE-2025-7564
A vulnerability, which was classified as critical, has been found in LB-LINK BL-AC3600 1.0.22. Affected by this issue is some unknown functionality of the file /etc/shadow. The manipulation with the input root:blinkadmin leads to hard-coded credentials. Local access is required to approach this...
PT-2023-19139 · Unknown · Sourcecodester Online Dj Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Online DJ Management System version 1.0 Description: A critical vulnerability has been found in the SourceCodester Online DJ Management System. The issue affects an unknown function of the file admin/events/manage event.php,...
编号已被CVE保留
No details are available at this time...
psychz.net XSS vulnerability
Vulnerable URL: https://www.psychz.net/client/questions/en/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 193748 VIP website status:| No Check psychz.net SSL connection:| Grade: A...