Projectworlds Life Insurance Management System 注入漏洞

Projectworlds Life Insurance Management System is a life insurance management system from Projectworlds India. An injection vulnerability exists in Projectworlds Life Insurance Management System version 1.0, which stems from an incorrect manipulation of the parameter reciptno in the file...

Projectworlds Life Insurance Management System 注入漏洞

Projectworlds Life Insurance Management System is a life insurance management system from Projectworlds India. An injection vulnerability exists in Projectworlds Life Insurance Management System version 1.0, which stems from an incorrect manipulation of the clientid parameter in the file...

Projectworlds Life Insurance Management System 注入漏洞

Projectworlds Life Insurance Management System is a life insurance management system from Projectworlds India. An injection vulnerability exists in Projectworlds Life Insurance Management System version 1.0, which stems from an incorrect manipulation of the parameter agentid in the file...

Laundry System insert_type.php file cross-site scripting vulnerability

Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Type in the file /data/inserttype.php, which can be exploited by an attacker to execute arbitrar...

Laundry System insert_laundry.php file cross-site scripting vulnerability

Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Customer in the file /data/insertlaundry.php, which can be exploited by an attacker to execute...

SUSE CVE-2025-38001

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: "We are writing to report that this recent patch 141d34391abbb315d68556b7c67ad97885407547 1 can be bypassed, and a UAF can still occur when HFSC ...

CVE-2025-5797

A vulnerability was found in code-projects Laundry System 1.0 and classified as problematic. This issue affects some unknown processing of the file /data/inserttype.php. The manipulation of the argument Type leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

CVE-2025-5709

A vulnerability classified as critical was found in code-projects Real Estate Property Management System 1.0. This vulnerability affects unknown code of the file /Admin/InsertCategory.php. The manipulation of the argument txtCategoryName leads to sql injection. The attack can be initiated remotel...

Code-Projects Laundry System 安全漏洞

Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Type in the file /data/inserttype.php, which can be exploited by an attacker to execute arbitrar...

Code-Projects Laundry System 代码注入漏洞

Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Customer in the file /data/insertlaundry.php, which can be exploited by an attacker to execute...

Code-Projects Real Estate Property Management System 注入漏洞

Code-Projects Real Estate Property Management System is a Code-Projects open source real estate property management system. Code-Projects Real Estate Property Management System version 1.0 suffers from an injection vulnerability, which stems from an incorrect operation of the parameter cmbState i...

CVE-2024-5238

A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/timetableinsertform.php. The manipulation of the argument grade leads to sql injection. It is possible to initiate the attack...

CVE-2024-35056

NASA AIT-Core v2.5.2 was discovered to contain multiple SQL injection vulnerabilities via the querypackets and insert functions...

CVE-2024-35665

Missing Authorization vulnerability in namithjawahar Insert Post Ads.This issue affects Insert Post Ads: from n/a through 1.3.2...

CVE-2024-32547

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Max Bond Code Insert Manager Q2W3 Inc Manager allows Reflected XSS.This issue affects Code Insert Manager Q2W3 Inc Manager: from n/a through 2.5.3...

CVE-2024-10689

The XLTab – Accordions and Tabs for Elementor Page Builder plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.4 via the 'XLTABINSERTTPL' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for...

CVE-2024-43275

Cross-Site Request Forgery CSRF vulnerability in xyzscripts.Com Insert PHP Code Snippet.This issue affects Insert PHP Code Snippet: from n/a through 1.3.6...

CVE-2023-41734

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in nigauri Insert Estimated Reading Time plugin = 1.2 versions...

CVE-2023-42426

Cross-site scripting XSS vulnerability in Froala Froala Editor v.4.1.1 allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component...

CVE-2023-42371

Cross Site Scripting vulnerability in Summernote Rich Text Editor v.0.8.18 and before allows a remote attacker to execute arbitrary code via a crafted script to the insert link function in the editor component...