CVE-2025-9594

A vulnerability has been found in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /report/complaininfo.php. The manipulation of the argument vid leads to sql injection. The attack is possible to be carried out remotely. The exploit has been...

Design/Logic Flaw

please before 0.4 allows a local unprivileged attacker to gain knowledge about the existence of files or directories in privileged locations via the searchpath function, the --check option, or the -d option...

CVE-2021-31153

CVE-2021-31153 affects pleaser before 0.4.0, allowing a local unprivileged user to discover the existence of files or directories in privileged locations via search_path, --check, or -d. The root cause is inadequate handling of path discovery during these options. Documented impact is local infor...

X (Formerly Twitter): ms5 debug page exposing internal info (internal IPs, headers)

Summary: Information exposure through /debug in ms5.twitter.com Description: Debug page from ms5.twitter.com exposes internal info, such as internal IPs and headers. Steps To Reproduce: 1. Visit ms5.twitter.com/debug 1. See internal IP and header-names used 1. To gather more internal IPs, just...

Oracle Java SE JRE Multiple Unspecified Vulnerabilities-03 (Apr 2015) - Linux

Oracle Java SE JRE is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...