Lucene search
K

8 matches found

OSV
OSV
added 2025/07/14 8:15 a.m.5 views

CVE-2025-7585

A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been classified as critical. Affected is an unknown function of the file /admin/manage-site.php. The manipulation of the argument webtitle leads to sql injection. It is possible to launch the attack remotely. The...

8.8CVSS5.8AI score0.00315EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/14 12:0 a.m.3 views

PHPGurukul Online Fire Reporting System 注入漏洞

PHPGurukul Online Fire Reporting System is an online fire reporting system from PHPGurukul Inc. An injection vulnerability exists in version 1.2 of the PHPGurukul Online Fire Reporting System, which stems from SQL injection due to incorrect manipulation of the parameter webtitle in the file...

8.8CVSS6.9AI score0.00315EPSS
Exploits1References6
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.7 views

OpenEMR 跨站请求伪造漏洞

OpenEMR is an open source medical management system from the OpenEMR Openemr community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. A cross-site request forgery vulnerability exists in OpenEMR version...

8.8CVSS5.7AI score0.00609EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2013/09/20 12:0 a.m.22 views

OpenEMR 4.1.1 Patch 14 - SQL Injection / Privilege Escalation / Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "OpenEMR 4.1.1 Pat...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/09/20 12:0 a.m.29 views

OpenEMR 4.1.1 Patch 14 SQLi Privilege Escalation Remote Code Execution

This Metasploit module exploits a vulnerability found in OpenEMR version 4.1.1 Patch 14 and lower. When logging in as any non-admin user it's possible to retrieve the admin SHA1 password hash from the database through SQL injection. The SQL injection vulnerability exists in the...

8.7AI score
Exploits0
Packet Storm
Packet Storm
added 2013/09/17 12:0 a.m.42 views

OpenEMR 4.1.1 Patch 14 SQL Injection / Shell Upload

Exploit Title: OpenEMR 4.1.1 Patch 14 Multiple Vulnerabilities Date: Sep 17 2013 Exploit Author: xistence Vendor Homepage: www.open-emr.org Tested on: CentOS 5.9 32-bit Affected Version : 4.1.1 Patch 14 and lower Fix: Upgrade to OpenEMR 4.1.2 Software details: OpenEMR is a Free and Open Source...

0.3AI score
Exploits0
0day.today
0day.today
added 2013/01/15 12:0 a.m.23 views

Calendar Script Easy Membership Management Application Persistent XSS Vulnerability

Exploit for php platform in category web applications Advisory:Calendar Script Easy Membership Management ApplicationE.M.M.A Persistent XSS Vulnerability Version:1.2 Vendor URL: http://calendarscripts.info/emma/ Demo Link: http://demo.pimteam.net/emma/admin.php Author: Viknesvaran Sittaramane...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/01/14 12:0 a.m.34 views

Calendar Script E.M.M.A 1.2 Cross Site Scripting

Advisory:Calendar Script Easy Membership Management ApplicationE.M.M.A Persistent XSS Vulnerability Version:1.2 Vendor URL: http://calendarscripts.info/emma/ Demo Link: http://demo.pimteam.net/emma/admin.php Author: Viknesvaran Sittaramane Category: Webapp Twiiter: https://twitter.com/csvsn...

7.4AI score
Exploits0
Rows per page
Query Builder