34 matches found
EUVD-2007-2315
Malware in sbrugna...
EUVD-2022-4997
Malicious code in bioql PyPI...
EUVD-2022-2107
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-14238
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId...
CVE-2025-28401
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the menuId parameter...
CVE-2025-28401
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the menuId parameter...
PT-2025-15239 · Ruoyi · Ruoyi
Name of the Vulnerable Software and Affected Versions: RUoYi version 4.8.0 Description: An issue in RUoYi allows a remote attacker to escalate privileges via the menuId parameter. Recommendations: For RUoYi version 4.8.0, as a temporary workaround, consider restricting access to the vulnerable...
RuoYi 安全漏洞
RuoYi is a backend management system for individual developers of RuoYi in China. A security vulnerability exists in RuoYi v.4.8.0, which can be exploited by a remote attacker to elevate privileges via the menuId parameter...
CVE-2025-28401
CVE-2025-28401 concerns RUoYi v4.8.0. The vulnerability allows a remote attacker to escalate privileges via the menuId parameter. The PT-2025-15239 advisory provides a workaround: restrict access to the vulnerable menuId parameter until a patch is available; there is no confirmed fix version in t...
CVE-2023-29849
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter...
CVE-2023-29849
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter...
CVE-2023-29849
Bang Resto 1.0 is affected by multiple SQL injection vulnerabilities exploitable through the parameters btnMenuItemID, itemID, itemPrice, menuID, staffID, and itemqty in order-related requests (e.g., staff/displayitem.php). The issue is confirmed across multiple feeds (NVD/Red Hat/Sec databases, ...
GHSA-34VW-8CJW-CWJJ GeniXCMS SQL Injection
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
Dolibarr SQL injection vulnerability in admin/menus/edit.php
SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId parameter...
Cross-Site Scripting (XSS)
genix/cms is vulnerable to cross-site scripting XSS attacks. The vulnerability exists because menuid parameter is not escaped properly, allowing the authenticated users to inject arbitrary code into it and launch XSS attacks...
CVE-2017-14238
SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId parameter...
Sql injection
SQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the menuId parameter...
Sql injection
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
CVE-2017-8377
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...
CVE-2017-8377
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter...