95 matches found
CVE-2023-4111
A vulnerability was found in PHP Jabbers Bus Reservation System 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument index/pickupid leads to cross site scripting. The attack may be launched remotely...
CVE-2023-53877
Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...
CVE-2023-53877
Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...
CVE-2023-53877
Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...
CVE-2023-53877
CVE-2023-53877 affects Bus Reservation System 1.1. The vulnerability is a SQL injection in the pickup_id parameter, enabling attackers to manipulate database queries. Techniques cited: boolean-based , error-based , and time-based blind SQL injection to steal information from the database. Practic...
CVE-2023-53877 Bus Reservation System 1.1 Multiple SQL Injection via pickup_id Parameter
Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...
Bus Reservation System SQL注入漏洞
Bus Reservation System is a PHPJabbers open source bus reservation system. A SQL injection vulnerability exists in Bus Reservation System version 1.1, which stems from a SQL injection in the pickupid parameter, and could lead to manipulation of database queries and theft of information...
SGWBox N3 安全漏洞
SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A security vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the file /usr/sbin/httpeshellserver, which could result in a buffer overflow...
PT-2025-51295
Name of the Vulnerable Software and Affected Versions Bus Reservation System version 1.1 Description The Bus Reservation System version 1.1 contains a SQL injection issue in the pickup id parameter. This allows attackers to manipulate database queries using boolean-based, error-based, and...
EUVD-2024-30600
Malicious code in bioql PyPI...
EUVD-2024-29179
Malicious code in bioql PyPI...
EUVD-2025-19982
Malicious code in bioql PyPI...
CVE-2025-47634
Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store wc-pickup-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WC Pickup Store: from n/a through = 1.8.9...
CVE-2025-47634
Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store wc-pickup-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WC Pickup Store: from n/a through = 1.8.9...
CVE-2025-47634
CVE-2025-47634 refers to a Missing Authorization vulnerability in the WordPress WC Pickup Store plugin, affecting versions up to 1.8.9. The issue arises from insufficient access-control checks, enabling exploitation of incorrectly configured authorization levels. Public sources in connected docum...
CVE-2025-47634 WordPress WC Pickup Store plugin <= 1.8.9 - Settings Change Vulnerability
Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store wc-pickup-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WC Pickup Store: from n/a through = 1.8.9...
WordPress plugin WC Pickup Store 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...
PT-2025-27915 · Unknown · Keylor Mendoza Wc Pickup Store
Name of the Vulnerable Software and Affected Versions: Keylor Mendoza WC Pickup Store versions 1.8.9 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploitation of incorrectly configured access control security levels. Recommendations: For...
CVE-2024-32814
Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.6.1...
CVE-2023-28991
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce plugin = 3.0.19 versions...