PT-2025-30932 · Unknown · Church Donation System

Name of the Vulnerable Software and Affected Versions: Church Donation System version 1.0 Description: A vulnerability exists in Church Donation System version 1.0 related to cross site scripting. The issue is located in the /admin/edit members.php file. Manipulation of the fname argument can lea...

AgileBPM 代码问题漏洞

AgileBPM is an agile development platform from the China AgileBPM project. A code issue vulnerability exists in AgileBPM 2.5.0 and earlier versions, which stems from a misuse of the parameter script in the file SysScriptController.java in the component Groovy Script Handler, resulting in...

CVE-2009-3227

Cross-site scripting XSS vulnerability in index.php in AlmondSoft Almond Classifieds Ads Enterprise and Almond Affiliate Network Classifieds allows remote attackers to inject arbitrary web script or HTML via the city parameter in a search action. NOTE: some of these details are obtained from thir...

CVE-2025-23030

WeGIA (Web manager) contains a Reflected Cross-Site Scripting (XSS) vulnerability in the cadastro_funcionario.php endpoint, exploitable via the cpf parameter due to lack of input validation/sanitization. The issue is reflected in the response and executed in the victim’s browser. According to Red...

The vulnerability of the microprogrammed software in PTZOptics PT30X-SDI/NDI webcams arises from incorrect authentication used in the operating system’s command sequence. This allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed webcam software from PTZOptics PT30X-SDI/NDI is related to incorrect authentication. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by sending a specially crafted request without an HTTP CGI script authentication head...