Lucene search
K

151 matches found

CVE
CVE
added 2025/11/17 12:0 a.m.10 views

CVE-2024-46335

PHPGurukul Complaint Management System 2.0 is vulnerable to Cross-Site Scripting (XSS) in the between-date-userreport.php script, via the fromdate and todate parameters. The root cause, as described across multiple reports, is lack of proper filtering/escaping of user-supplied data, enabling inje...

4.6CVSS5.8AI score0.00171EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Beauty Parlour Management System sales-reports-detail.php File SQL Injection Vulnerability

Beauty Parlour Management System is an application system. Beauty Parlour Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the parameters fromdate and todate in the file /admin/sales-reports-detail.php for externally entered SQL statement...

8.8CVSS8.3AI score0.0031EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.6 views

PT-2025-40960

Name of the Vulnerable Software and Affected Versions Campcodes Online Apartment Visitor Management System version 1.0 Description A security flaw exists in Campcodes Online Apartment Visitor Management System version 1.0. The issue involves a SQL injection impacting an unknown function within th...

9.8CVSS7.3AI score0.00384EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-30758

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00243EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-30808

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00445EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24952

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28899

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00193EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/25 2:54 a.m.22 views

CVE-2025-10826

A security flaw has been discovered in Campcodes Online Beauty Parlor Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/sales-reports-detail.php. The manipulation of the argument fromdate/todate results in sql injection. The attack can be launche...

8.8CVSS6.5AI score0.00351EPSS
Exploits1References1
CNVD
CNVD
added 2025/09/25 12:0 a.m.7 views

Park Ticketing Management System foreigner-bwdates-reports-details.php file SQL injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from a lack of validation of the fromdate parameter in the file foreigner-bwdates-reports-details.php against an externally entered SQL...

9.8CVSS8.6AI score0.00445EPSS
Exploits1References1
CNVD
CNVD
added 2025/09/25 12:0 a.m.3 views

Park Ticketing Management System normal-bwdates-reports-details.php file SQL injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the parameter fromdate in the file normal-bwdates-reports-details.php. A...

5.4CVSS8.2AI score0.00243EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/24 12:28 a.m.12 views

CVE-2025-56074

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

9.8CVSS8.6AI score0.00445EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/24 12:28 a.m.8 views

CVE-2025-56075

A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

5.4CVSS8.6AI score0.00243EPSS
Exploits1References1
OSV
OSV
added 2025/09/23 1:15 a.m.2 views

CVE-2025-10826

A security flaw has been discovered in Campcodes Online Beauty Parlor Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/sales-reports-detail.php. The manipulation of the argument fromdate/todate results in sql injection. The attack can be launche...

8.8CVSS5.8AI score0.00351EPSS
Exploits1References5
NVD
NVD
added 2025/09/22 2:15 p.m.20 views

CVE-2025-56075

A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

5.4CVSS0.00243EPSS
Exploits1References1
OSV
OSV
added 2025/09/22 2:15 p.m.9 views

CVE-2025-56075

A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

5.4CVSS6.3AI score0.00243EPSS
Exploits1References1
NVD
NVD
added 2025/09/22 2:15 p.m.13 views

CVE-2025-56074

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

9.8CVSS0.00445EPSS
Exploits1References1
OSV
OSV
added 2025/09/22 2:15 p.m.6 views

CVE-2025-56074

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

9.8CVSS6.2AI score
Exploits0References1
CVE
CVE
added 2025/09/22 12:0 a.m.18 views

CVE-2025-56074

The CVE-2025-56074 entry concerns PHPGurukul Park Ticketing Management System v2.0. The vulnerability is a SQL Injection in the file foreigner-bwdates-reports-details.php, exploitable via the fromdate parameter in a POST request. The underlying issue is lack of input validation that allows an att...

9.8CVSS8.2AI score0.00445EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/09/22 12:0 a.m.11 views

CVE-2025-56074

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...

0.00445EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.2 views

Campcodes Online Beauty Parlor Management System SQL注入漏洞

CampCodes Online Beauty Parlor Management System is an online beauty parlor management system from CampCodes Philippines, Inc. Campcodes Online Beauty Parlor Management System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter...

8.8CVSS6.9AI score0.00351EPSS
Exploits1References5
Rows per page
Query Builder