EUVD-2025-10876

Malicious code in bioql PyPI...

CVE-2020-20700

A stored cross site scripting XSS vulnerability in /app/formadd/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box...

Cross site request forgery (csrf)

JTBCPHP 3.0 allows CSRF for creating an account via the console/account/manage.php?type=action&action=add URI...

Attila PHP 3.0 - SQL Injection Unauthorized Privileged Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8502/info An SQL injection vulnerability has been reported in Attila PHP that could allow an attacker to gain unauthorized privileged access to a target site. This could be accomplished by requesting a URI including...

Sunbyte e-Flower Cross Site Scripting / SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail :...

php 3.0 php3文件类型远程错误信息出错泄露真实物理路径

No description provided by source...

CVE-2008-4379

CVE-2008-4379 is a cross-site scripting (XSS) vulnerability impacting report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML via the id parameter, as described in the NVD entry. The reported impact is partial confidenti...