Lucene search
K

11 matches found

CNNVD
CNNVD
added 2025/08/19 12:0 a.m.3 views

SolidInvoice 代码注入漏洞

SolidInvoice is an invoice solution application from SolidInvoice open source. A code injection vulnerability exists in SolidInvoice version 2.4.0 and earlier, which stems from the incorrect manipulation of the parameter Name by file/quotes in the component Quote Module, resulting in a cross-site...

5.4CVSS6.7AI score0.00264EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/02/17 12:0 a.m.4 views

Codezips Gym Management System 注入漏洞

Codezips Gym Management System is an open source gym management system from Codezips. An injection vulnerability exists in Codezips Gym Management System version 1.0, which stems from the fact that incorrect manipulation of the parameter name can lead to SQL injection...

9.8CVSS7.1AI score0.00478EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/12/22 12:0 a.m.4 views

Portábilis i-Educar 代码注入漏洞

Portábilis i-Educar is an application from Portábilis. It can easily help you with basic and technical education. A code injection vulnerability exists in Portábilis i-Educar version 2.9 and earlier versions, which stems from the fact that incorrect manipulation of the parameter name can lead to...

5.4CVSS4.1AI score0.00472EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.4 views

1000 Projects Beauty Parlour Management System 注入漏洞

1000 Projects Beauty Parlour Management System is an open source beauty parlor management system from 1000 Projects. An injection vulnerability exists in 1000 Projects Beauty Parlour Management System version 1.0, which stems from an incorrect manipulation of the parameter name that can lead to S...

9.8CVSS8AI score0.00587EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/07/24 12:0 a.m.5 views

Insurance Management System 安全漏洞

Insurance Management System is an insurance management system from the individual developer Angel Jude Reyes Suarez. A security vulnerability exists in Insurance Management System version 1.0, which stems from an incorrect manipulation of the parameter name that can lead to cross-site scripting...

5.3CVSS4.4AI score0.00447EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/05/28 12:0 a.m.6 views

Simple Online Bidding System 跨站脚本漏洞

Simple Online Bidding System is an online bidding system by the individual developer oretnom23. A cross-site scripting vulnerability exists in Simple Online Bidding System version 1.0, which stems from a cross-site scripting XSS attack caused by manipulating the parameter name in the file...

6.1CVSS4.5AI score0.00447EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/08 12:0 a.m.3 views

Automated-Mess-Management-System Security Vulnerability

Automated-Mess-Management-System is an automated measurement management system by the individual developer Boyiddhanath Roy. A security vulnerability exists in Automated-Mess-Management-System version 1.0, which stems from the fact that incorrect manipulation of the parameter name can lead to...

6.1CVSS6.2AI score0.00465EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/04/29 12:0 a.m.5 views

Simple Student Information System 跨站脚本漏洞

Simple Student Information System is a web-based application platform by Carlo Montero, an individual developer. It can be used to help a university or college manage student information and academic records. A cross-site scripting vulnerability exists in Simple Student Information System version...

4.8CVSS4AI score0.00564EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.34 views

Earnings and Expense Tracker App 跨站脚本漏洞

Expense Tracker is an expense tracker organized by SourceCode and Projects. A security vulnerability exists in the SourceCodester Earnings and Expense Tracker App version 1.0, which stems from incorrect manipulation of the parameter name resulting in cross-site scripting...

6.1CVSS4.3AI score0.00363EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.4 views

Earnings and Expense Tracker App 跨站脚本漏洞

Expense Tracker is an expense tracker organized by SourceCode and Projects. A security vulnerability exists in the SourceCodester Earnings and Expense Tracker App version 1.0, which stems from incorrect manipulation of the parameter name resulting in cross-site scripting...

6.1CVSS4.3AI score0.00363EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/01/02 12:0 a.m.4 views

License To Kill SQL注入漏洞

License To Kill is a database project by Eliza Brock Marcum, an individual developer. License To Kill suffers from an SQL injection vulnerability that stems from an incorrect manipulation of the parameter name resulting in sql injection...

9.8CVSS6.6AI score0.00643EPSS
Exploits0References4
Rows per page
Query Builder