23 matches found
EUVD-2025-4142
Malicious code in bioql PyPI...
EUVD-2025-4143
Malicious code in bioql PyPI...
EUVD-2025-4141
Malicious code in bioql PyPI...
CVE-2025-25991
SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25988
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter...
CVE-2025-25990
Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25990
Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25991
SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25991
SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25988
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter...
CVE-2025-25990
Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25988
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter...
PT-2025-7117 · Hooskcms · Hooskcms
Name of the Vulnerable Software and Affected Versions: hooskcms version 1.8 Description: The issue allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter. This is related to a Cross Site Scripting vulnerability. Recommendations: For...
CVE-2025-25990
Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25988
CVE-2025-25988 affects hooskcms v1.8 with a Cross Site Scripting vulnerability that can cause denial of service when a remote attacker manipulates the Link title parameter and the Title parameter. The issue is documented across multiple feeds (NVD/Red Hat/CIRCL/OSV) with no public patch details i...
CVE-2025-25988
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter...
CVE-2025-25988
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter...
CVE-2025-25990
CVE-2025-25990 affects HooskCms v1.7.1. A placeholder/XSS vulnerability in the /install/index.php component allows a remote attacker to obtain sensitive information. The issue is confirmed across multiple sources; no patch version is specified in the provided documents. Remediation guidance found...
CVE-2025-25991
CVE-2025-25991 affects HooskCMS v1.7.1. The vulnerability is described as an SQL Injection in the /install/index.php component, enabling a remote attacker to obtain sensitive information. According to the CVSS 3.1 data, the base score is 5.1 (Medium) with a LOCAL attack-vector, LOW complexity, no...
CVE-2025-25991
SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...