EUVD-2018-4872

Malware in sbrugna...

EUVD-2022-4478

Malicious code in bioql PyPI...

Notice Board System search-notice.php File SQL Injection Vulnerability

Notice Board System is a bulletin board system. The Notice Board System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchdata in the file /search-notice.php. An attacker can exploit this vulnerability to...

CVE-2025-5566 PHPGurukul Notice Board System search-notice.php sql injection

A vulnerability classified as critical has been found in PHPGurukul Notice Board System 1.0. This affects an unknown part of the file /search-notice.php. The manipulation of the argument searchdata leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-5566 PHPGurukul Notice Board System search-notice.php sql injection

A vulnerability classified as critical has been found in PHPGurukul Notice Board System 1.0. This affects an unknown part of the file /search-notice.php. The manipulation of the argument searchdata leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

PT-2025-23759 · Unknown · Phpgurukul Notice Board System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Notice Board System version 1.0 Description: A critical issue has been discovered, affecting an unknown part of the file /search-notice.php. The manipulation of the searchdata argument leads to SQL injection. This issue can be...

CVE-2025-4301 itsourcecode Content Management System search-notice.php sql injection

A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /search-notice.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The...

itsourcecode Content Management System 安全漏洞

itsourcecode Content Management System is an open source content management system from itsourcecode. A security vulnerability exists in version 1.0 of itsourcecode Content Management System, which is caused by an SQL injection due to the manipulation of the searchdata parameter in file...

Dolibarr reflected cross-site scripting (XSS) vulnerability

A reflected cross-site scripting XSS vulnerability in Dolibarr 11.0.4 and below allows remote attackers to inject arbitrary web script or HTML into public/notice.php related to transphrase and transkey...

GHSA-M396-2X3H-V3V4 Dolibarr reflected cross-site scripting (XSS) vulnerability

A reflected cross-site scripting XSS vulnerability in Dolibarr 11.0.4 and below allows remote attackers to inject arbitrary web script or HTML into public/notice.php related to transphrase and transkey...

GHSA-2GC5-3H3P-8VPF Dolibarr reflected cross-site scripting (XSS) vulnerability

A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...

CVE-2020-14475

A reflected cross-site scripting XSS vulnerability in Dolibarr 11.0.3 allows remote attackers to inject arbitrary web script or HTML into public/notice.php related to transphrase and transkey...

CVE-2020-14475

A reflected cross-site scripting XSS vulnerability in Dolibarr 11.0.3 allows remote attackers to inject arbitrary web script or HTML into public/notice.php related to transphrase and transkey...

Cross site scripting

A reflected cross-site scripting XSS vulnerability in Dolibarr 11.0.3 allows remote attackers to inject arbitrary web script or HTML into public/notice.php related to transphrase and transkey...

CVE-2020-14475

A reflected cross-site scripting XSS vulnerability in Dolibarr 11.0.3 allows remote attackers to inject arbitrary web script or HTML into public/notice.php related to transphrase and transkey...

Cross-Site Scripting (XSS)

dolibarr is vulnerable to cross-site scripting XSS. A remote attacker is able to inject arbitrary Javascript into a victim's browser via the transphrase parameter in notice.php due to the application not performing output encoding before displaying on the user's browser...

CVE-2018-19993

A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...

briscoelaw.net XSS vulnerability

Open Bug Bounty ID: OBB-655382 Description| Value ---|--- Affected Website:| briscoelaw.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Design/Logic Flaw

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...

CVE-2018-12919

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...