Lucene search
K

130 matches found

CNNVD
CNNVD
added 2024/12/22 12:0 a.m.4 views

Portábilis i-Educar 代码注入漏洞

Portábilis i-Educar is an application from Portábilis. It can easily help you with basic and technical education. A code injection vulnerability exists in Portábilis i-Educar version 2.9 and earlier versions, which stems from the fact that incorrect manipulation of the parameter name can lead to...

5.4CVSS4.1AI score0.00472EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/11/25 12:0 a.m.2 views

1000 Projects Beauty Parlour Management System SQL注入漏洞

1000 Projects Beauty Parlour Management System is an open source beauty salon management system from 1000 Projects. A SQL injection vulnerability exists in 1000 Projects Beauty Parlour Management System version 1.0, which originates from a SQL injection in the parameter name...

9.8CVSS7.9AI score0.00827EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.5 views

1000 Projects Beauty Parlour Management System 注入漏洞

1000 Projects Beauty Parlour Management System is an open source beauty parlor management system from 1000 Projects. An injection vulnerability exists in 1000 Projects Beauty Parlour Management System version 1.0, which stems from an incorrect manipulation of the parameter name that can lead to S...

9.8CVSS8AI score0.00587EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/11/11 12:0 a.m.3 views

PublicCMS 安全漏洞

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A security vulnerability exists in PublicCMS version 5.202406.d. The vulnerability stems from an incorrect manipulation of the parameter name can lead to cross-site scripting attacks...

5.4CVSS4.3AI score0.00368EPSS
Exploits1References1
OSV
OSV
added 2024/10/15 9:15 p.m.4 views

CVE-2024-48713

In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities...

6.5CVSS5.8AI score0.00364EPSS
Exploits1References1
OSV
OSV
added 2024/10/15 9:15 p.m.5 views

CVE-2024-48712

In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities...

6.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2024/10/15 9:15 p.m.4 views

CVE-2024-48710

In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities...

6.5CVSS5.8AI score0.00364EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/10/15 12:0 a.m.7 views

TP-LINK TL-WDR7660 安全漏洞

The TP-LINK TL-WDR7660 is a Gigabit router from China P&L TP-LINK. A buffer overflow vulnerability exists in the TP-LINK TL-WDR7660 version 1.0, which stems from the rtRuleJsonTobin function not checking the parameter string name when handling it, and can be exploited by a remote attacker to...

6.5CVSS8.1AI score0.00374EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/09/19 12:0 a.m.6 views

Best Online News Portal SQL注入漏洞

Best Online News Portal is an online news portal by Mayuri K. Individual developer. A SQL injection vulnerability exists in Best Online News Portal version 1.0, which stems from the parameter name in the file /news-details.php that can lead to SQL injection...

9.8CVSS7AI score0.00644EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/07/24 12:0 a.m.6 views

Insurance Management System 安全漏洞

Insurance Management System is an insurance management system from the individual developer Angel Jude Reyes Suarez. A security vulnerability exists in Insurance Management System version 1.0, which stems from an incorrect manipulation of the parameter name that can lead to cross-site scripting...

5.3CVSS4.4AI score0.00447EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.3 views

Employee and Visitor Gate Pass Logging System Cross-Site Scripting Vulnerability

Employee and Visitor Gate Pass Logging System is an employee and visitor pass logging system developed by Carlo Montero, an individual developer. A cross-site scripting vulnerability exists in Employee and Visitor Gate Pass Logging System version 1.0, which originates from an unknown function in...

6.9CVSS6.2AI score0.00617EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/05/30 12:0 a.m.3 views

Dino Physics School Assistant 跨站脚本漏洞

Dino Physics School Assistant is an application. A cross-site scripting vulnerability exists in Dino Physics School Assistant version 2.3, which stems from unrecognized code in /classes/SystemSettings.php that leads to a cross-site scripting attack via the parameter name...

5.4CVSS6.2AI score0.00261EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/28 12:0 a.m.7 views

Simple Online Bidding System 跨站脚本漏洞

Simple Online Bidding System is an online bidding system by the individual developer oretnom23. A cross-site scripting vulnerability exists in Simple Online Bidding System version 1.0, which stems from a cross-site scripting XSS attack caused by manipulating the parameter name in the file...

6.1CVSS4.5AI score0.00447EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.5 views

Simple Chat System 跨站脚本漏洞

Simple Chat System is a simple chat system by the individual developer nurhodelta17. A cross-site scripting vulnerability exists in Simple Chat System version 1.0, which stems from the fact that incorrect manipulation of the parameter name can lead to cross-site scripting...

6.1CVSS4.2AI score0.0048EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/04/06 12:0 a.m.6 views

Computer Laboratory Management System 跨站脚本漏洞

Computer Laboratory Management System is a computer laboratory management system. A cross-site scripting vulnerability exists in SourceCodester Computer Laboratory Management System version 1.0, which stems from a cross-site scripting XSS vulnerability in the parameter name of file...

6.1CVSS4.6AI score0.00629EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/03/24 12:0 a.m.7 views

WebRAT 代码问题漏洞

WebRAT is a simple remote web management tool. A code issue vulnerability exists in cyberaz0r WebRAT, which stems from a security issue in the downloadfile function in Server/api.php, which causes unrestricted uploads via the parameter name...

6.5CVSS6.6AI score0.00456EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/08 12:0 a.m.4 views

Automated-Mess-Management-System Security Vulnerability

Automated-Mess-Management-System is an automated measurement management system by the individual developer Boyiddhanath Roy. A security vulnerability exists in Automated-Mess-Management-System version 1.0, which stems from the fact that incorrect manipulation of the parameter name can lead to...

6.1CVSS6.2AI score0.00465EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.7 views

FAQ Management System Cross-Site Scripting Vulnerability

FAQ Management System is a FAQ management system by Remy Andrade, a personal developer. A cross-site scripting vulnerability exists in version 1.0 of the FAQ Management System, which stems from the parameter Frequently Asked Question in the component Update FAQ that causes cross-site scripting...

5.4CVSS6AI score0.00514EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/01/29 12:0 a.m.4 views

PbootCMS Cross-Site Scripting Vulnerability

PbootCMS is a PbootCMS personal developer of an open source enterprise website content management system CMS developed using the PHP language. A cross-site scripting vulnerability exists in PbootCMS version 3.2.5-20230421, which stems from the presence of an unknown function in the system that...

6.1CVSS6.2AI score0.00505EPSS
Exploits1References4
Citrix
Citrix
added 2024/01/22 12:0 a.m.9 views

MCS: Machine catalogue update fails due to ErrorID: FailedToReadMasterImageMetadata

MCS Catalogs on HyperV with SCVMM Server 2019 can't be updated. The following error is displayed: Exception: DesktopStudioErrorId ProvisioningTaskError Error Category: NotSpecified ErrorID : FailedToReadMasterImageMetadata TaskErrorInformation :Terminated InternalErrorMessage: The value must not ...

7.1AI score
Exploits0
Rows per page
Query Builder