GHSA-CVM2-5F78-G9M8 TYPO3 CMS exposes sensitive information in an error message

Error messages containing sensitive information in the File Abstraction Layer in TYPO3 CMS versions 9.0.0-9.5.54, 10.0.0-10.4.53, 11.0.0-11.5.47, 12.0.0-12.4.36, and 13.0.0-13.4.17 allow backend users to disclose full file paths via failed low-level file-system operations...

Online Course Registration /admin/level.php File SQL Injection Vulnerability

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter level in the file /admin/level.php. An attacker can exploit...

CVE-2025-4773

A vulnerability was found in PHPGurukul Online Course Registration 3.1 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/level.php. The manipulation of the argument level leads to sql injection. The attack may be launched remotely. The exploit has...

PHPGurukul Online Course Registration 注入漏洞

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter level in the file /admin/level.php. An attacker can exploit...

Format string

Format string vulnerability in the visualization function in Jason Boettcher Liero Xtreme 0.62b and earlier allows remote attackers to execute arbitrary code via format string specifiers in 1 a nickname, 2 a dedicated server name, or 3 a mapname in a level aka .lxl file...

Multiple vulnerabilities in Liero Xtreme 0.62b

Luigi Auriemma Application: Liero Xtreme http://lieroxtreme.thegaminguniverse.com Versions: = 0.62b Platforms: Windows Bugs: A server crash/freeze B format string in the visualization function Exploitation: A remote, versus server B local/remote, versus clients Date: 06 Mar 2006 Author: Luigi...