3 matches found
CVE-2025-22930
Summary: OS4ED openSIS versions 7.0–9.1 are documented to contain a SQL injection vulnerability via the groupid parameter in the endpoint /messaging/Group.php . The issue appears in multiple feeds (NVD, Red Hat, OSV, CVE listings) and is characterized by an injection flaw in a user-supplied group...
PT-2023-29815 · Unknown · Geeklog-Core
Name of the Vulnerable Software and Affected Versions: Geeklog-Core geeklog version 2.2.2 Description: A Cross Site Scripting XSS issue allows a remote attacker to execute arbitrary code via a crafted payload to the grp desc parameter of the "admin/group.php" component. This enables the attacker ...
FS Linkedin Clone SQL Injection Vulnerability
FS Linkedin Clone is a set of PHP and MySQL based scripts for job search and recruitment websites. A SQL injection vulnerability exists in FS Linkedin Clone version 1.0. A remote attacker can exploit this vulnerability by sending the 'grid' parameter to the group.php file, the 'fid' parameter to...