15 matches found
EUVD-2025-22011
Malicious code in bioql PyPI...
EUVD-2025-31488
Malicious code in bioql PyPI...
CVE-2025-11135
A vulnerability was detected in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. The affected element is the function loadLanguage of the file classes/class.database.php of the component Cookie Handler. Performing manipulation of the argument userid results in...
CVE-2025-11135
A vulnerability was detected in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. The affected element is the function loadLanguage of the file classes/class.database.php of the component Cookie Handler. Performing manipulation of the argument userid results in...
CVE-2025-11135 pmTicket Project-Management-Software Cookie class.database.php loadLanguage deserialization
A vulnerability was detected in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. The affected element is the function loadLanguage of the file classes/class.database.php of the component Cookie Handler. Performing manipulation of the argument userid results in...
CVE-2025-11135
The CVE-2025-11135 entry concerns pmTicket Project-Management-Software, specifically the Cookie Handler component’s loadLanguage function in file classes/class.database.php. The issue arises from manipulation of the user_id argument that leads to deserialization, with remote exploitability. Publi...
CVE-2025-11135 pmTicket Project-Management-Software Cookie class.database.php loadLanguage deserialization
A vulnerability was detected in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. The affected element is the function loadLanguage of the file classes/class.database.php of the component Cookie Handler. Performing manipulation of the argument userid results in...
PT-2025-39803
Name of the Vulnerable Software and Affected Versions pmTicket Project-Management-Software versions prior to 2ef379da2075f4761a2c9029cf91d073474e7486 Description A flaw exists in pmTicket Project-Management-Software related to the deserialization of data. The issue is located in the loadLanguage...
CVE-2025-7886
A vulnerability, which was classified as critical, was found in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. This affects the function getUserLanguage of the file classes/class.database.php. The manipulation of the argument userid leads to sql injection. It...
CVE-2025-7886
A vulnerability, which was classified as critical, was found in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. This affects the function getUserLanguage of the file classes/class.database.php. The manipulation of the argument userid leads to sql injection. It...
CVE-2025-7886 pmTicket Project-Management-Software class.database.php getUserLanguage sql injection
A vulnerability, which was classified as critical, was found in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. This affects the function getUserLanguage of the file classes/class.database.php. The manipulation of the argument userid leads to sql injection. It...
CVE-2025-7886
CVE-2025-7886 affects pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. The vulnerability is a SQL injection in getUserLanguage of classes/class.database.php caused by manipulation of the user_id argument. Remote exploitation is possible. The documentation indic...
CVE-2025-7886 pmTicket Project-Management-Software class.database.php getUserLanguage sql injection
A vulnerability, which was classified as critical, was found in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. This affects the function getUserLanguage of the file classes/class.database.php. The manipulation of the argument userid leads to sql injection. It...
PMTicket Project-Management-Software 注入漏洞
PMTicket Project-Management-Software is an agile project management and issue tracking system from PMTicket open source. An injection vulnerability exists in pmTicket Project-Management-Software, which stems from SQL injection due to incorrect manipulation of the parameter userid of the function...
PT-2025-30188 · Unknown · Pmticket Project-Management-Software
Name of the Vulnerable Software and Affected Versions: pmTicket Project-Management-Software versions prior to 2ef379da2075f4761a2c9029cf91d073474e7486 Description: A critical issue exists in pmTicket Project-Management-Software. The getUserLanguage function within the classes/class.database.php...