14 matches found
CVE-2026-10168
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file application/controllers/Parents.php. The manipulation of the argument param1 leads to improper control...
CVE-2026-10168
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file application/controllers/Parents.php. The manipulation of the argument param1 leads to improper control...
EUVD-2026-33488
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file application/controllers/Parents.php. The manipulation of the argument param1 leads to improper control...
CVE-2026-10168 OUSL-GROUP-BrinaryBrains School Student Management System Parents.php marks resource injection
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file application/controllers/Parents.php. The manipulation of the argument param1 leads to improper control...
CVE-2026-10168
The CVE concerns OUSL-GROUP-BrinaryBrains School Student Management System (up to build 1e70e5ad1125b86dca4ee086eb6bb121f17708b6). The vulnerability is in the function marks of the file application/controllers/Parents.php, where manipulating the argument param1 enables improper control of resourc...
School Student Management System 安全漏洞
School Student Management System is an open-source tool developed by Binary Brains for managing school student information. Version 1e70e5ad1125b86dca4ee086eb6bb121f17708b6 of the School Student Management System had a security vulnerability. This vulnerability stemmed from the operation of...
CVE-2021-25899
An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. An unauthenticated attacker can send a crafted HTTP request to perform a blind time-based SQL Injection. The vulnerable parameter is param1...
LabVantage Solutions LIMS Cross-Site Scripting Vulnerability
LabVantage Solutions LIMS is a laboratory letter management system from LabVantage Solutions, USA. A cross-site scripting vulnerability exists in LabVantage Solutions LIMS version 2017, which stems from some unknown handling of parameter param1 in a file processed by the POST request handler...
LabVantage Solutions LIMS SQL Injection Vulnerability
LabVantage Solutions LIMS is a laboratory letter management system from LabVantage Solutions, USA. A SQL injection vulnerability exists in LabVantage Solutions LIMS version 2017, which stems from unknown code in the component POST Request Handler, which leads to an SQL injection via the param1...
CVE-2021-25899
An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. An unauthenticated attacker can send a crafted HTTP request to perform a blind time-based SQL Injection. The vulnerable parameter is param1...
WordPress Doctor Appointment Booking 1.0.0 SQL Injection / XSS
Exploit Title: Wordpress Doctor Appointment Booking Plugin v1.0.0 - SQL Injection / XSS Date: 2018-01-01 Exploit Author: 8bitsec Vendor Homepage: https://codecanyon.net/ Software Link: https://codecanyon.net/item/doctor-appointment-booking-wordpress-plugin/21215314 Version: 1.0.0 Tested on: Kali...
ChinaGames Code Execution
ChinaGames CGAgent.dll ActiveX Remote Code Execution Exploit Exploit made by etirah Download: www.chinagames.com Problem DLL : CGAgent.dll Problem Func : CreateChinagamesparam1 Problem Param : param1 References: 1. http://bbs.pediy.com/showthread.php?t=87615 2. http://www.milw0rm.com/exploits/857...
BaoFeng - config.dll ActiveX Remote Code Execution
BaoFeng - config.dll ActiveX Remote Code Execution BaoFeng config.dll ActiveX Remote Code Execution Exploit Exploit made by etirah Download: www.baofeng.com Problem DLL : config.dll Problem Func : SetAttributeValueparam1,param2,param3 Problem Param : param1 References: 1...
CVE-2005-4567
Multiple cross-site scripting XSS vulnerabilities in FTGate Technology formerly known as Floosietek FTGate 4.4 Build 4.4.000 Oct 26 2005 allow remote attackers to inject arbitrary web script or HTML by sending 1 the href parameter to index.fts, or the param1 parameter to 2 /domains/index.fts, 3...