Online Birth Certificate System 1.2 - Stored Cross-Site Scripting

Online Birth Certificate System 1.2 contains multiple stored cross-site scripting vulnerabilities in the component /obcs/user/profile.php, which allows an attacker to execute arbitrary web script or HTML via a crafted payload injected into the fname or lname parameters. id: CVE-2022-29005 info:...

CVE-2026-32210

Server-side request forgery ssrf in Microsoft Dynamics 365 Online allows an unauthorized attacker to perform spoofing over a network...

PT-2026-32391

Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL injection in /orms/admin/rooms/view room.php...

CVE-2026-3406

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

CVE-2023-4556

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. Affected by this issue is the function mysqliquery of the file sexit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-62210

Improper neutralization of input during web page generation 'cross-site scripting' in Dynamics 365 Field Service online allows an authorized attacker to perform spoofing over a network...

CVE-2025-62211 Dynamics 365 Field Service (online) Spoofing Vulnerability

...

CVE-2025-62210 Dynamics 365 Field Service (online) Spoofing Vulnerability

...

custom_pentest_scripts

custompentestscripts This...

764 Terror Network Member Richard Densmore Sentenced to 30 Years in Prison

The 47-year-old Michigan man, who pleaded guilty to sexually exploiting a child, was highly active in the online criminal network called 764, which the FBI now considers a “tier one” terrorism threat...

Exposed United Nations Database Left Sensitive Information Accessible Online

The 115,000-plus files related to UN Women included detailed financial disclosures from organizations around the world—and personal details and testimonials from vulnerable individuals...

CVE-2024-49866 tracing/timerlat: Fix a race during cpuhp processing

In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Fix a race during cpuhp processing There is another found exception that the "timerlat/1" thread was scheduled on CPU0, and lead to timer corruption finally: ODEBUG: init active active state 0 object:...

Apple Prototypes and Corporate Secrets Are for Sale Online—If You Know Where to Look

On the hunt for corporate devices being sold secondhand, a researcher found a trove of Apple corporate data, a Mac Mini from the Foxconn assembly line, an iPhone 14 prototype, and more...

DEBIAN-CVE-2021-47624

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange The refcount leak issues take place in an error handling path. When the 3rd argument buf doesn't match with "offline", "online" or "remove", the function simply...

MAL-2024-3931 Malicious code in watching-scream-6-movie-stream-online-for-at-home (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-3926 Malicious code in watch_john_wick_4_2k23_online_free_en (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-3884 Malicious code in watch-john-wick-chapter-4-online-fullmovies-free-at-home (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-2988 Malicious code in scream-6-2023-online-on-fullmovies-free-at-homes4ks (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in pelisplus-ver-scream-6-2023-peliculas-online-hd (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-2560 Malicious code in john-wick-chapter-4-full-movies-online-at-homes-hq (npm)

--- -= Per source details. Do not edit below this line.=-...