177 matches found
EUVD-2023-46088
Malicious code in bioql PyPI...
EUVD-2025-11541
Malicious code in bioql PyPI...
EUVD-2023-27002
Malicious code in bioql PyPI...
EUVD-2024-25902
Malicious code in bioql PyPI...
EUVD-2024-35316
Malicious code in bioql PyPI...
EUVD-2023-51121
Malicious code in bioql PyPI...
WordPress plugin AffiliateWP SQL注入漏洞
WordPress AffiliateWP plugin an affiliate marketing plugin designed for the WordPress platform, mainly used to help users quickly build an affiliate program, track referrals, pay commissions and other functions. WordPress AffiliateWP plugin suffers from a SQL injection vulnerability that stems fr...
CVE-2025-57119
An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login function...
CVE-2025-57119
An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login function...
CVE-2025-57119
An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login function...
PT-2025-37985
Name of the Vulnerable Software and Affected Versions: Online Library Management System version 3.0 Description: An issue allows an attacker to escalate privileges via the adminlogin.php component and the Login function. Recommendations: Apply updates to address the issue in version 3.0. As a...
CVE-2025-57119
An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login function...
PHPGurukul Online Library Management System 安全漏洞
Online Library Management System is an online library management system. An elevation of privilege vulnerability exists in the Online Library Management System, which is caused by a flaw in the adminlogin.php component and the Login function, and can be exploited by an attacker to cause an...
CVE-2025-10100 SourceCodester Simple Forum Discussion System admin_class.php sql injection
A vulnerability was detected in SourceCodester Simple Forum Discussion System 1.0. This impacts an unknown function of the file /adminclass.php?action=login. Performing manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit is n...
CVE-2025-9757
A vulnerability was determined in Campcodes/SourceCodester Courier Management System 1.0. Affected is the function Login of the file /ajax.php. This manipulation of the argument email causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
PT-2025-31219 · Grandstream · Grandstream Ucm6510
Name of the Vulnerable Software and Affected Versions: Grandstream UCM6510 versions prior to 1.0.20.53 Description: An issue allows a remote attacker to obtain sensitive information via the Login function. The vulnerable endpoints are /cgi and /webrtccgi. Recommendations: Update to version...
CVE-2025-28171
The CVE-2025-28171 issue affects Grandstream UCM6510 (versions before 1.0.20.53). The vulnerability arises in the login endpoints (/cgi and /webrtccgi), allowing a remote attacker to obtain sensitive information. Remediation: upgrade to version 1.0.20.53 or later. Note: connected PT-2025-31219 co...
CVE-2025-1351
IBM Storage Virtualize 8.5, 8.6, and 8.7 products could allow a user to escalate their privileges to that of another user logging in at the same time due to a race condition in the login function...