EUVD-2022-46132

Malicious code in bioql PyPI...

EUVD-2025-28858

Malicious code in bioql PyPI...

EUVD-2023-30644

Malicious code in bioql PyPI...

EUVD-2022-45231

Malicious code in bioql PyPI...

EUVD-2025-22449

Malicious code in bioql PyPI...

EUVD-2024-30856

Malicious code in bioql PyPI...

EUVD-2023-49296

Malicious code in bioql PyPI...

EUVD-2022-46123

Malicious code in bioql PyPI...

EUVD-2022-31162

Malicious code in bioql PyPI...

EUVD-2025-7132

Malicious code in bioql PyPI...

EUVD-2023-53646

Malicious code in bioql PyPI...

EUVD-2022-2565

Malicious code in bioql PyPI...

EUVD-2021-28656

Malicious code in bioql PyPI...

CVE-2025-11138 mirweiye wenkucms common.php createPathOne os command injection

A vulnerability was found in mirweiye wenkucms up to 3.4. This impacts the function createPathOne of the file app/common/common.php. The manipulation results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used...

CVE-2025-11089

A vulnerability was determined in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. This impacts an unknown function of the file /Profilers/PriProfile/COUNT3s4.php. Executing manipulation of the argument cbranch can lead to sql injection. It is possible to launch the...

CVE-2025-10945

A security vulnerability has been detected in nuz007 smsboom up to 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674. Impacted is an unknown function of the file d.php. Such manipulation of the argument hm leads to cross site scripting. The attack may be launched remotely. This product operates on a rolli...

smsboom 代码注入漏洞

smsboom is an SMS bombing software by the individual developer of QuitDropdatabaseFalse. A code injection vulnerability exists in smsboom 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674 and prior versions, which stems from a misuse of the parameter hm in the file dy.php, and could lead to a cross-site...

PT-2025-39366

Name of the Vulnerable Software and Affected Versions yi-ge get-header-ip versions prior to 589b23d0eb0043c310a6a13ce4bbe2505d0d0b15 Description A cross-site scripting issue exists due to manipulation of the callback argument within the ip function of the ip.php file. This allows for remote...

PT-2025-39364

Name of the Vulnerable Software and Affected Versions MikeCen WeChat-Face-Recognition affected versions not specified Description A security flaw exists in MikeCen WeChat-Face-Recognition. The issue involves cross site scripting resulting from manipulation of the echostr argument within the valid...

CVE-2025-29084

SQL Injection vulnerability in CSZ-CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the execSqlFile function in the Upgrade.php file...