16 matches found
Improper Authentication
Overview Affected versions of this package are vulnerable to Improper Authentication in facilitator payment processing on Solana. An attacker can interfere with or manipulate payment transactions by exploiting a race condition. Remediation Upgrade...
Improper Authentication
Overview x402 is a x402: An internet native payments protocol Affected versions of this package are vulnerable to Improper Authentication in facilitator payment processing on Solana. An attacker can interfere with or manipulate payment transactions by exploiting a race condition. Remediation...
Improper Authentication
Overview Affected versions of this package are vulnerable to Improper Authentication in facilitator payment processing on Solana. An attacker can interfere with or manipulate payment transactions by exploiting a race condition. Remediation Upgrade github.com/coinbase/x402/go/mechanisms/svm to...
Improper Authentication
Overview Affected versions of this package are vulnerable to Improper Authentication in facilitator payment processing on Solana. An attacker can interfere with or manipulate payment transactions by exploiting a race condition. Remediation Upgrade...
x402 SDK Security Advisory
Impact A security vulnerability exists in outdated versions of the x402 SDK. This vulnerability does not affect users' private keys, smart contracts, or funds. The issue impacts resource servers accepting payments on Solana when the facilitator is running a vulnerable version of the x402 SDK. Who...
EUVD-2025-26331
Malicious code in bioql PyPI...
Sports Management System facilitator.php File SQL Injection Vulnerability
Sports Management System a sports management system. The Sports Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter code in the file /Admin/facilitator.php. An attacker can exploit this vulnerabili...
@agentforce/adk (>=0.9.0 <=0.12.1), @bgord/bun (>=0.11.2 <=1.0.1) +38 more potentially affected by CVE-2025-58362 via hono (>=4.8.0 <=4.9.5)
hono NPM version =4.8.0, =0.9.0, =0.11.2, =1.3.0, =1.3.2, =4.0.0-alpha.5, =1.3.3, =0.67.0, =0.14.2, =0.4.0, =0.21.0, =0.21.0, =0.19.0, =0.16.0, =0.0.1, =0.0.6, =0.6.3 and more Source cves: CVE-2025-58362 Source advisory: OSV:GHSA-9HP6-4448-45G2...
CVE-2025-9766
A vulnerability was found in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/facilitator.php. Performing manipulation of the argument code results in sql injection. Remote exploitation of the attack is possible. The exploit has been made...
CVE-2025-9766
A vulnerability was found in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/facilitator.php. Performing manipulation of the argument code results in sql injection. Remote exploitation of the attack is possible. The exploit has been made...
CVE-2025-9766
The CVE-2025-9766 entry corresponds to a SQL injection in itsourcecode Sports Management System 1.0, specifically in the file /Admin/facilitator.php where manipulation of the code parameter in an unknown function enables remote exploitation. Public exploits have been reported. Multiple connected ...
CVE-2025-9766 itsourcecode Sports Management System facilitator.php sql injection
A vulnerability was found in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/facilitator.php. Performing manipulation of the argument code results in sql injection. Remote exploitation of the attack is possible. The exploit has been made...
itsourcecode Sports Management System 安全漏洞
Sports Management System a sports management system. The Sports Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter code in the file /Admin/facilitator.php. An attacker can exploit this vulnerabili...
PT-2025-35460
Name of the Vulnerable Software and Affected Versions: itsourcecode Sports Management System version 1.0 Description: A SQL injection issue exists due to manipulation of the code argument in an unknown function of the /Admin/facilitator.php file. Remote exploitation is possible. The exploit has...
CISA: STS Threat Timelines Facilitator Guide
System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...
Microsoft, Meta, and DOJ Disrupt Global Cybercrime and Fraudulent Networks
Meta Platforms, Microsoft, and the U.S. Department of Justice DoJ have announced independent actions to tackle cybercrime and disrupt services that enable scams, fraud, and phishing attacks. To that end, Microsoft's Digital Crimes Unit DCU said it seized 240 fraudulent websites associated with an...