CVE-2025-9811 Campcodes Farm Management System reviewInput.php sql injection

A vulnerability was found in Campcodes Farm Management System 1.0. This affects an unknown part of the file /reviewInput.php. Performing manipulation of the argument rating results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be...

PT-2023-29947 · Calibre · Calibre

Name of the Vulnerable Software and Affected Versions: calibre versions prior to 6.19.0 Description: The issue allows adding resources outside of the document root by default, due to the link to local path in ebooks/conversion/plugins/html input.py. Recommendations: For versions prior to 6.19.0,...

SUSE CVE-2017-7227

GNU linker ld in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l...

CVE-2017-7227

GNU linker ld in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l...

UBUNTU-CVE-2017-7227

GNU linker ld in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l...

CVE-2017-7227

GNU linker ld in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l...

DCForum+ 1.2 Subject Field HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8384/info DCForum+ is prone to an HTML injection vulnerability. An attacker may exploit this issue by including hostile HTML and script code in the subject field of posts to the bulletin board. This is because the script...

EsContacts 1.0 - login.php?msg Cross-Site Scripting

EsContacts 1.0 - login.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script...

ContentBoxx - 'login.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17612/info ContentBoxx is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...

VegaDNS 0.8.1/0.9.8/0.9.9 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14538/info VegaDNS is vulnerable to cross-site scripting attacks. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...