CVE-2026-9410

A vulnerability has been found in Sushmi-pal Invoice-System up to a0a3faa16dee2621b231ae227333f5761607283b. This vulnerability affects unknown code of the file /profile of the component Profile Workflow. Such manipulation of the argument ID leads to improper authorization. It is possible to launc...

OESA-2026-2227 wireshark security update

Wireshark is an open source tool for profiling network traffic and analyzing packets. Such a tool is often referred to as a network analyzer, network protocol analyzer or sniffer. Security Fixes: ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of...

CVE-2024-51223

A stored cross-site scripting XSS vulnerability in the component /admin/profile.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Mobile Number parameter...

CVE-2024-51223

A stored cross-site scripting XSS vulnerability in the component /admin/profile.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Mobile Number parameter...

CVE-2020-37020

creationtimestamp| type| source ---|---|--- 2026-01-29 17:35:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdld5lpi7t2m...

CVE-2026-0597

A flaw has been found in Campcodes Supplier Management System 1.0. Affected by this issue is some unknown functionality of the file /retailer/editprofile.php. This manipulation of the argument txtRetailerAddress causes sql injection. Remote exploitation of the attack is possible. The exploit has...

PT-2026-1291

Name of the Vulnerable Software and Affected Versions Campcodes Supplier Management System version 1.0 Description A flaw exists in Campcodes Supplier Management System version 1.0, specifically within the file /retailer/edit profile.php. The manipulation of the txtRetailerAddress argument can le...

CVE-2024-44635

PHPGurukul Student Record System 3.20 is vulnerable to Cross Site Scripting XSS via adminname and aemailid parameters in /admin-profile.php...

PT-2025-47002

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System versions up to 20250320 Description A cross-site scripting issue exists in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System. The issue i...

EUVD-2025-31409

Malicious code in bioql PyPI...

CVE-2025-9802

CVE-2025-9802 affects RemoteClinic 2.0, with a SQL injection in the /staff/profile.php file caused by manipulating the ID parameter. The vulnerability can be exploited remotely. Multiple sources corroborate the issue and specify the affected component as RemoteClinic 2.0, with the injection affec...

CVE-2025-9179

creationtimestamp| type| source ---|---|--- 2025-08-20 12:29:18+00:00| seen| https://t.me/truesecator/7347 2025-08-21 20:55:49+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lwwtc7kcsk2d 2025-08-30 16:57:10+00:00| seen|...

CVE-2025-8744

creationtimestamp| type| source ---|---|--- 2025-08-09 03:16:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvwsiihu5d2l...

Library System profile.php file code issue vulnerability

Library System is a library system. Library System has a code issue vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /user/student/profile.php. An attacker can exploit this vulnerability to upload malicious files...

PHPGurukul Student Record System 注入漏洞

PHPGurukul Student Record System is an application from PHPGurukul Inc. An injection vulnerability exists in PHPGurukul Student Record System version 3.2, which results from SQL injection due to incorrect manipulation of parameter aemailid in file /admin-profile.php...

PHPGurukul Auto Taxi Stand Management System 注入漏洞

Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter mobilenumber in the file /admin/admin-profile.ph...

PHPGurukul Complaint Management System 注入漏洞

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter mobilenumber in the file /admin/admin-profile.php. An attacker can...

Maid Hiring Management System profile.php file cross-site scripting vulnerability

Maid Hiring Management System is a maid hiring management system. Maid Hiring Management System suffers from a cross-site scripting vulnerability in the file /admin/profile.php that stems from a lack of adequate validation and filtering of the input of the name parameter. No details of the...

PHPGurukul Maid Hiring Management System 代码注入漏洞

Maid Hiring Management System is a maid hiring management system. Maid Hiring Management System suffers from a cross-site scripting vulnerability in the file /admin/profile.php that stems from a lack of adequate validation and filtering of the input of the name parameter. No details of the...

CVE-2024-55100

A stored cross-site scripting XSS vulnerability in the component /admin/profile.php of Online Nurse Hiring System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the fullname parameter...