CVE-2025-60833

An XML External Entity XXE vulnerability in the /mall/wxpay/pay component of uzy-ssm-mall v1.1.0 allows attackers to execute arbitrary code via supplying crafted XML data...

EUVD-2009-2034

Malware in sbrugna...

EUVD-2015-5459

Malware in sbrugna...

EUVD-2019-15585

Malware in sbrugna...

EUVD-2013-0220

Malware in sbrugna...

EUVD-2018-1467

Malware in sbrugna...

EUVD-2018-1468

Malware in sbrugna...

EUVD-2012-1665

Malware in sbrugna...

EUVD-2019-15584

Malware in sbrugna...

EUVD-2014-2060

Malware in sbrugna...

EUVD-2007-5438

Malware in sbrugna...

EUVD-2013-4450

Malware in sbrugna...

EUVD-2022-2337

Malicious code in bioql PyPI...

CVE-2025-6123

A vulnerability has been found in code-projects Restaurant Order System 1.0 and classified as critical. This vulnerability affects unknown code of the file /payment.php. The manipulation of the argument tabidNoti leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2016-15015

A vulnerability, which was classified as problematic, was found in viafintech Barzahlen Payment Module PHP SDK up to 2.0.0. Affected is the function verify of the file src/Webhook.php. The manipulation leads to observable timing discrepancy. The complexity of an attack is rather high. The...

CVE-2019-6017

REMISE Payment Module 2.11, 2.12 and 2.13 version 3.0.12 and earlier allow remote attackers to DisclosedInformationtype via unspecified vectors...

CVE-2019-6016

Cross-site scripting vulnerability in REMISE Payment Module 2.11, 2.12 and 2.13 version 3.0.12 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2013-0182

The Payment module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict access to payments, which allows remote attackers to read arbitrary payments...

CVE-2024-33973

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'Attendance' and 'YearLevel' in...

GHSA-VG5X-6Q66-RVGX Barzahlen Payment Module PHP SDK vulnerable to Observable Timing Discrepancy

A vulnerability, which was classified as problematic, was found in viafintech Barzahlen Payment Module PHP SDK up to 2.0.0. Affected is the function verify of the file src/Webhook.php. The manipulation leads to observable timing discrepancy. Upgrading to version 2.0.1 is able to address this issu...