27 matches found
EUVD-2025-14194
Malicious code in bioql PyPI...
EUVD-2025-14186
Malicious code in bioql PyPI...
EUVD-2025-14094
Malicious code in bioql PyPI...
CVE-2025-4486
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=deleteplan. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2025-4485
A vulnerability has been found in itsourcecode Gym Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=deletetrainer. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit ha...
CVE-2025-4464
A vulnerability has been found in itsourcecode Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=saveplan. The manipulation of the argument plan leads to sql injection. The attack can be launched remotely...
CVE-2025-4488 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=deletepackage. The manipulation of the argument ID leads to sql injection. The attack can be launched...
CVE-2025-4488 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=deletepackage. The manipulation of the argument ID leads to sql injection. The attack can be launched...
CVE-2025-4487 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /ajax.php?action=deletemember. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2025-4464
A vulnerability has been found in itsourcecode Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=saveplan. The manipulation of the argument plan leads to sql injection. The attack can be launched remotely...
CVE-2025-4466 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?action=savepayment. The manipulation of the argument registrationid leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2025-4466 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?action=savepayment. The manipulation of the argument registrationid leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2025-4465 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /ajax.php?action=saveschedule. The manipulation of the argument memberid leads to sql injection. The attack may be launched remotely. Th...
CVE-2025-4464
CVE-2025-4464 affects itsourcecode Gym Management System 1.0. The vulnerability is a SQL injection in the /ajax.php?action=save_plan endpoint caused by manipulation of the plan parameter. It is exploitable remotely and has been disclosed publicly; multiple connected sources corroborate the remote...
CVE-2025-4463 itsourcecode Gym Management System ajax.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Gym Management System 1.0. Affected is an unknown function of the file /ajax.php?action=savepackage. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit h...
CVE-2025-4463 itsourcecode Gym Management System ajax.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Gym Management System 1.0. Affected is an unknown function of the file /ajax.php?action=savepackage. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit h...
PT-2025-20589
Name of the Vulnerable Software and Affected Versions itsourcecode Gym Management System version 1.0 Description A critical issue has been found in the itsourcecode Gym Management System, affecting the file /ajax.php?action=delete trainer. The manipulation of the ID argument leads to SQL injectio...
PT-2025-20482
Name of the Vulnerable Software and Affected Versions itsourcecode Gym Management System version 1.0 Description A critical issue has been found in the itsourcecode Gym Management System. The problem affects the /ajax.php?action=save payment API endpoint, where the manipulation of the registratio...
PT-2025-20481
Name of the Vulnerable Software and Affected Versions itsourcecode Gym Management System version 1.0 Description A critical issue was found in the itsourcecode Gym Management System, affecting some unknown functionality of the file "/ajax.php?action=save schedule". The manipulation of the member ...
CVE-2025-4363 itsourcecode Gym Management System ajax.php sql injection
A vulnerability, which was classified as critical, has been found in itsourcecode Gym Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=endmembership. The manipulation of the argument rid leads to sql injection. The attack may be initiated remotely. Th...