28 matches found
CVE-2026-23758 GFI HelpDesk < 4.99.9 Stored XSS via editsubject Parameter
GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the ticket subject field that allows authenticated staff members to inject malicious JavaScript by manipulating the editsubject POST parameter. Attackers can inject XSS payloads through inadequate sanitization in...
CVE-2026-3403
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
CVE-2026-3403
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
CVE-2026-3403
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
CVE-2026-3403
Affected software: PHPGurukul Student Record Management System 1.0. Vulnerability: cross-site scripting via /edit-subject.php when the Subject parameter is manipulated. Root cause: unknown processing of the file leads to XSS. Impact: remote attacker can induce script execution; CVSS metrics indic...
EUVD-2026-9136
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
CVE-2026-3403 PHPGurukul Student Record Management System edit-subject.php cross site scripting
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
CVE-2026-3403 PHPGurukul Student Record Management System edit-subject.php cross site scripting
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
PHPGurukul Student Record Management System 代码注入漏洞
PHPGurukul Student Record Management System is a student record management system developed by PHPGurukul Corporation. Version 1.0 of the PHPGurukul Student Record Management System has a code injection vulnerability. This vulnerability arises from incorrect handling of the parameter “Subject 1” ...
PT-2026-22525
A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. Performing a manipulation of the argument Subject 1 results in cross site scripting. The attack is possible to be carried out remotely. The...
EUVD-2025-30400
Malicious code in bioql PyPI...
EUVD-2022-37546
Malicious code in bioql PyPI...
CVE-2025-10784
A security vulnerability has been detected in Campcodes Online Learning Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/editsubject.php. The manipulation of the argument subjectcode leads to sql injection. It is possible to initiate the attack...
CVE-2025-10784
A security vulnerability has been detected in Campcodes Online Learning Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/editsubject.php. The manipulation of the argument subjectcode leads to sql injection. It is possible to initiate the attack...
CVE-2025-10784 Campcodes Online Learning Management System edit_subject.php sql injection
A security vulnerability has been detected in Campcodes Online Learning Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/editsubject.php. The manipulation of the argument subjectcode leads to sql injection. It is possible to initiate the attack...
CVE-2025-10784 Campcodes Online Learning Management System edit_subject.php sql injection
A security vulnerability has been detected in Campcodes Online Learning Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/editsubject.php. The manipulation of the argument subjectcode leads to sql injection. It is possible to initiate the attack...
Campcodes Online Learning Management System SQL注入漏洞
CampCodes Online Learning Management System is an online learning management system from CampCodes Philippines, Inc. A SQL injection vulnerability exists in Campcodes Online Learning Management System version 1.0, which stems from an incorrect manipulation of the parameter subjectcode in the file...
CVE-2024-50829
A SQL Injection vulnerability was found in /admin/editsubject.php in kashipara E-learning Management System Project 1.0 via the unit parameter...
Online Student Enrollment System SQL注入漏洞
Online Student Enrollment System is an online student enrollment system by Lyndon Bermoy, an individual developer. Online Student Enrollment System version 1.0 suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-e...
CVE-2024-3771
A vulnerability was found in PHPGurukul Student Record System 3.20 and classified as critical. Affected by this issue is some unknown functionality of the file /edit-subject.php. The manipulation of the argument sub1/sub2/sub3/sub4/udate leads to sql injection. The attack may be launched remotely...