CVE-2025-10348 Stored Cross-Site Scripting in URVE Smart Office

URVE Smart Office is vulnerable to Stored XSS in report problem functionality. An attacker with a low-privileged account can upload an SVG file containing a malicious payload, which will be executed when a victim visits the URL of the uploaded resource. The resource is available to anyone without...

CVE-2025-10348 Stored Cross-Site Scripting in URVE Smart Office

URVE Smart Office is vulnerable to Stored XSS in report problem functionality. An attacker with a low-privileged account can upload an SVG file containing a malicious payload, which will be executed when a victim visits the URL of the uploaded resource. The resource is available to anyone without...

PT-2025-44401

Name of the Vulnerable Software and Affected Versions URVE Smart Office versions prior to 1.1.24 Description URVE Smart Office is susceptible to a Stored Cross-Site Scripting XSS issue within the report problem functionality. An attacker possessing a low-privileged account can upload a Scalable...

CVE-2025-12328

A vulnerability was identified in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. Impacted is an unknown function of the file /contestproblem.php. Such manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit is publicly availabl...

CVE-2025-12328 shawon100 RUET OJ contestproblem.php sql injection

A vulnerability was identified in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. Impacted is an unknown function of the file /contestproblem.php. Such manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit is publicly availabl...

CVE-2025-12328

CVE-2025-12328 affects shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. The vulnerability is a SQL injection in the function handling the parameter Name in the file /contestproblem.php, reported to be exploitable remotely. Multiple connected sources confirm the issue but do not p...

PT-2025-44050

Name of the Vulnerable Software and Affected Versions shawon100 RUET OJ versions up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5 Description A SQL injection issue exists in shawon100 RUET OJ. Manipulation of the Name argument in the /contestproblem.php file can lead to SQL injection. The attack ca...

RUET-OJ SQL注入漏洞

RUET-OJ is an online judge platform by the individual developer Ashadullah Shawon. RUET-OJ suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Name in the file /contestproblem.php, which could lead to a SQL injection attack...

EUVD-2022-55079

In the Linux kernel, the following vulnerability has been resolved: virtio: use virtiodeviceready in virtiodevicerestore After waking up a suspended VM, the kernel prints the following trace for virtio drivers which do not directly call virtiodeviceready in the .restore: PM: suspend exit irq 22:...

Linux Distros Unpatched Vulnerability : CVE-2025-49641

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A regular Zabbix user with no permission to the Monitoring - Problems view is still able to call the problem.view.refresh action and therefore still retrieve a...

EUVD-2014-4290

Malware in sbrugna...

EUVD-2011-3223

Malware in sbrugna...

EUVD-2016-2846

Malware in sbrugna...

EUVD-2018-4407

Malware in sbrugna...

EUVD-2018-7369

Malware in sbrugna...

EUVD-2016-6913

Malware in sbrugna...

EUVD-2019-3172

Malware in sbrugna...

EUVD-2018-8663

Malware in sbrugna...

EUVD-2017-16102

Malware in sbrugna...

EUVD-2019-3442

Malware in sbrugna...