30 matches found
CVE-2026-37339
SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/viewgenre.php...
CVE-2026-37336
SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/viewmusic.php...
EUVD-2023-59681
Malicious code in bioql PyPI...
CVE-2023-7263
Some Huawei home music system products have a path traversal vulnerability. Successful exploitation of this vulnerability may cause unauthorized file deletion or file permission change.Vulnerability ID:HWPSIRT-2023-53450 This vulnerability has been assigned a CVEID:CVE-2023-7263...
CVE-2023-7300
Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or the file permission to be changed.Vulnerability ID:HWPSIRT-2023-60613...
CVE-2023-7300
CVE-2023-7300 affects Huawei Home Music System via a path traversal vulnerability. Exploitation could allow unauthorized manipulation of the music host file, including deletion or changing file permissions, as described by HWPSIRT-2023-60613 and the Huawei PSIRT advisory. The available documents ...
CVE-2023-7300
Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or the file permission to be changed.Vulnerability ID:HWPSIRT-2023-60613...
CVE-2023-7300
Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or the file permission to be changed.Vulnerability ID:HWPSIRT-2023-60613...
Security Advisory - Path Traversal Vulnerability in Huawei Home Music System
Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or the file permission to be changed.Vulnerability ID:HWPSIRT-2023-60613 This vulnerability has been assigned a CVEID:CVE-2023-7300...
Kashipara Music Management System 安全漏洞
Kashipara Music Management System is a music management system from Kashipara Inc. A security vulnerability exists in Kashipara Music Management System version v1.0, which stems from an Access Control Error vulnerability that allows an unauthenticated attacker to delete valid music playlist entri...
CVE-2024-42795
An Incorrect Access Control vulnerability was found in /music/viewuser.php?id=3 and /music/controller.php?page=edituser&id=3 in Kashipara Music Management System v1.0. This vulnerability allows an unauthenticated attacker to view valid user details...
CVE-2024-42796
CVE-2024-42796 affects Kashipara Music Management System v1.0. The issue is an Incorrect Access Control in the /music/ajax.php?action=delete_genre endpoint, allowing an unauthenticated attacker to delete valid music genre entries. Exploitation details are not provided in the available documents. ...
CVE-2024-42794
Kashipara Music Management System v1.0 is vulnerable to Incorrect Access Control via /music/ajax.php?action=saveuser...
CVE-2024-42796
An Incorrect Access Control vulnerability was found in /music/ajax.php?action=deletegenre in Kashipara Music Management System v1.0. This vulnerability allows an unauthenticated attacker to delete the valid music genre entries...
Kashipara Music Management System 安全漏洞
Kashipara Music Management System is a music management system from Kashipara. A security vulnerability exists in Kashipara Music Management System version v1.0, which stems from faulty access control in /music/ajax.php?action=deletegenre, which could allow an unauthenticated attacker to delete...
CVE-2024-42793
A Cross-Site Request Forgery CSRF vulnerability was found in Kashipara Music Management System v1.0 via a crafted request to the /music/ajax.php?action=saveuser page...
CVE-2024-42788
A Stored Cross Site Scripting XSS vulnerability was found in "/music/ajax.php?action=savemusic" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute arbitrary code via "title" & "artist" parameter fields...
CVE-2024-42787
A Stored Cross Site Scripting XSS vulnerability was found in "/music/ajax.php?action=saveplaylist" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute arbitrary code via "title" & "description" parameter fields...
Kashipara Music Management System 安全漏洞
Kashipara Music Management System is a music management system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Music Management System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the page parameter of...
CVE-2024-42792
Kashipara Music Management System v1.0 is affected by a Cross-Site Request Forgery (CSRF) via /music/ajax.php?action=delete_playlist. The vulnerability allows an attacker to induce a user to perform a sensitive action, with the request crafted to spoof legitimate operations. Root cause: CSRF on t...