26 matches found
EUVD-2007-2315
Malware in sbrugna...
EUVD-2022-4997
Malicious code in bioql PyPI...
EUVD-2022-2107
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-14238
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId...
CVE-2025-28401
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the menuId parameter...
PT-2025-15239 · Ruoyi · Ruoyi
Name of the Vulnerable Software and Affected Versions: RUoYi version 4.8.0 Description: An issue in RUoYi allows a remote attacker to escalate privileges via the menuId parameter. Recommendations: For RUoYi version 4.8.0, as a temporary workaround, consider restricting access to the vulnerable...
CVE-2025-28401
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the menuId parameter...
RuoYi 安全漏洞
RuoYi is a backend management system for individual developers of RuoYi in China. A security vulnerability exists in RuoYi v.4.8.0, which can be exploited by a remote attacker to elevate privileges via the menuId parameter...
CVE-2025-28401
CVE-2025-28401 concerns RUoYi v4.8.0. The vulnerability allows a remote attacker to escalate privileges via the menuId parameter. The PT-2025-15239 advisory provides a workaround: restrict access to the vulnerable menuId parameter until a patch is available; there is no confirmed fix version in t...
GHSA-34VW-8CJW-CWJJ GeniXCMS SQL Injection
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
Dolibarr SQL injection vulnerability in admin/menus/edit.php
SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId parameter...
Cross-Site Scripting (XSS)
genix/cms is vulnerable to cross-site scripting XSS attacks. The vulnerability exists because menuid parameter is not escaped properly, allowing the authenticated users to inject arbitrary code into it and launch XSS attacks...
CVE-2017-14238
SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId parameter...
Sql injection
SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId parameter...
CVE-2017-8377
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
CVE-2017-8377
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
CVE-2017-8377
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
Papoo 2.1.2 index.php menuid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16020/info Papoo is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...
Sql injection
Rejected reason: SQL injection vulnerability in index.php in TinyMCE 2.0.1 allows remote attackers to execute arbitrary SQL commands via the menuID parameter. NOTE: CVE and multiple reliable third parties dispute this issue, since TinyMCE does not contain index.php or any PHP code. This may be an...
Unfixed XSS vulnerability at www.eimeta.lt
Security researcher F3nix, has submitted on 24/01/2008 a cross-site-scripting XSS vulnerability affecting www.eimeta.lt, which at the time of submission ranked 1905391 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/03/2008. It is currently...