Lucene search
K

5 matches found

CNVD
CNVD
added 2025/06/11 12:0 a.m.1 views

Online Fire Reporting System /manage-teams.php File SQL Injection Vulnerability

Online Fire Reporting System is an online fire reporting system. The Online Fire Reporting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter teamid in the file /admin/manage-teams.php. An attacker ca...

9.8CVSS8.3AI score0.00387EPSS
Exploits1References1
OSV
OSV
added 2025/06/04 11:15 p.m.5 views

CVE-2025-5617

A vulnerability classified as critical has been found in PHPGurukul Online Fire Reporting System 1.2. This affects an unknown part of the file /admin/manage-teams.php. The manipulation of the argument teamid leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

9.8CVSS5.8AI score0.00387EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/06/04 12:0 a.m.3 views

PHPGurukul Online Fire Reporting System 注入漏洞

Online Fire Reporting System is an online fire reporting system. The Online Fire Reporting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter teamid in the file /admin/manage-teams.php. An attacker ca...

9.8CVSS7AI score0.00387EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/06/27 12:0 a.m.6 views

LiteLLM Access Control Error Vulnerability

LiteLLM is an open source application from LiteLLM. All LLM APIs can be called using the OpenAI format. An Access Control Error vulnerability exists in LiteLLM version 1.34.34, which stems from an improper access control issue in the Team Management feature that allows an attacker to...

6.5CVSS6.9AI score0.00406EPSS
Exploits1References2
Hacker One
Hacker One
added 2017/10/24 1:48 p.m.18 views

Infogram: Application Vulnerable to CSRF - Remove Invited user

POC: 1. Login to the application with a business account. 2. Go to Manage teams, where we can send invites to a team member. Send a Invite to a team member 3. After the invite is sent to a user, the admin has option to Remove User. 4. While trying to remove the user, capture the request in burp ,...

Exploits0
Rows per page
Query Builder