10 matches found
CVE-2026-14700
This CVE concerns code-projects Internship Management System 1.0, specifically the Employer Login Endpoint’s login.php. The vulnerability is a SQL injection caused by manipulating the email/password arguments, enabling remote exploitation. The records indicate the exploit is publicly disclosed an...
PT-2025-53349
Name of the Vulnerable Software and Affected Versions SOCA Access Control System version 180612 Description The SOCA Access Control System contains multiple SQL injection flaws. These flaws allow attackers to manipulate database queries through unvalidated POST parameters. Exploitation of injecti...
Multiple Cross-Site Scripting Vulnerabilities in Synology Photo Station-2945
Synology Photo Station is a solution for sharing pictures, videos and blogs over the Internet from Synology. A cross-site scripting vulnerability exists in Synology Photo Station versions prior to 6.3-2945, which allows remote attackers to inject arbitrary web script or HTML via loginphp or...
russcomMultiple.txt
Russcom.net Loginphp multiple vulnerabilties Discovered by: Nomenumbra Date: 5/2/2006 impact:moderate privilege escalation,possible defacement Russcom.net's loginphp script is a small usermanagement script: Users can sign up for a username which they can use to login to the password protected mai...
Crlf injection
CRLF injection vulnerability in help.php in Russcom Network Loginphp allows remote attackers to spoof e-mails and inject MIME headers via CRLF sequences in the email address...
Cross site scripting
Cross-site scripting XSS vulnerability in Russcom Network Loginphp Russcom.Loginphp allows remote attackers to inject arbitrary web script or HTML via the username field when registering...
CVE-2006-2159
CRLF injection vulnerability in help.php in Russcom Network Loginphp allows remote attackers to spoof e-mails and inject MIME headers via CRLF sequences in the email address...
CVE-2006-2160
CVE-2006-2160 describes a cross-site scripting (XSS) vulnerability in Russcom Network Loginphp (Russcom.Loginphp) that allows remote attackers to inject arbitrary web script or HTML via the username field during registration. The available documents confirm the affected component and the input ve...
CVE-2006-2159
CVE-2006-2159 describes a CRLF injection vulnerability in help.php of Russcom Network Loginphp. The issue allows remote attackers to spoof e-mails and inject MIME headers by crafting CRLF sequences in the email address. According to the NVD entry, the vulnerability is exploitable over the network...
Russcom.net Loginphp multiple vulnerabilties
Russcom.net Loginphp multiple vulnerabilties Discovered by: Nomenumbra Date: 5/2/2006 impact:moderate privilege escalation,possible defacement Russcom.net's loginphp script is a small usermanagement script: Users can sign up for a username which they can use to login to the password protected mai...