20 matches found
EUVD-2024-16516
Malicious code in bioql PyPI...
EUVD-2024-33107
Malicious code in bioql PyPI...
EUVD-2025-15602
Malicious code in bioql PyPI...
EUVD-2025-14979
Malicious code in bioql PyPI...
CVE-2025-4837
CVE-2025-4837 affects projectworlds Student Project Allocation System 1.0. The vulnerability is a SQL injection in the file /make_group_sql.php, triggered by manipulating the arguments mem1, mem2, or mem3. It is possible to initiate the attack remotely, and exploit details have been disclosed pub...
CVE-2025-4837 projectworlds Student Project Allocation System make_group_sql.php sql injection
A vulnerability classified as critical has been found in projectworlds Student Project Allocation System 1.0. This affects an unknown part of the file /makegroupsql.php. The manipulation of the argument mem1/mem2/mem3 leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-4482 Project Worlds Student Project Allocation System forgot_password_sql.php sql injection
A vulnerability classified as critical was found in Project Worlds Student Project Allocation System 1.0. Affected by this vulnerability is an unknown functionality of the file /changepass/forgotpasswordsql.php. The manipulation of the argument PatBloodGroup1 leads to sql injection. The attack ca...
CVE-2024-10425
A vulnerability was found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /student/projectselection/moveupproject.php of the component Project Selection Page. The manipulation of the argument up...
CVE-2024-10425
A vulnerability was found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /student/projectselection/moveupproject.php of the component Project Selection Page. The manipulation of the argument up...
CVE-2024-10425
CVE-2024-10425 affects Project Worlds Student Project Allocation System 1.0. The vulnerability lies in /student/project_selection/move_up_project.php where manipulating the up parameter yields an SQL injection. The issue can be exploited remotely over NETWORK with LOW attack complexity and no pri...
CVE-2024-10424 Project Worlds Student Project Allocation System Project Selection Page remove_project.php sql injection
A vulnerability has been found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /student/projectselection/removeproject.php of the component Project Selection Page. The manipulation of the...
CVE-2024-10423
A vulnerability, which was classified as critical, was found in Project Worlds Student Project Allocation System 1.0. Affected is an unknown function of the file /student/projectselection/projectselection.php of the component Project Selection Page. The manipulation of the argument projectid lead...
CVE-2024-10423
A vulnerability, which was classified as critical, was found in Project Worlds Student Project Allocation System 1.0. Affected is an unknown function of the file /student/projectselection/projectselection.php of the component Project Selection Page. The manipulation of the argument projectid lead...
CVE-2024-10423 Project Worlds Student Project Allocation System Project Selection Page project_selection.php sql injection
A vulnerability, which was classified as critical, was found in Project Worlds Student Project Allocation System 1.0. Affected is an unknown function of the file /student/projectselection/projectselection.php of the component Project Selection Page. The manipulation of the argument projectid lead...
CVE-2024-10423
CVE-2024-10423 affects Project Worlds Student Project Allocation System 1.0, specifically the /student/project_selection/project_selection.php file. The vulnerability arises from the project_id parameter, enabling remote SQL injection. Public exploit details exist. No patch/fix is confirmed in th...
CVE-2024-10423 Project Worlds Student Project Allocation System Project Selection Page project_selection.php sql injection
A vulnerability, which was classified as critical, was found in Project Worlds Student Project Allocation System 1.0. Affected is an unknown function of the file /student/projectselection/projectselection.php of the component Project Selection Page. The manipulation of the argument projectid lead...
Cross site scripting
A vulnerability was found in Project Worlds Student Project Allocation System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file adminlogin.php of the component Admin Login Module. The manipulation of the argument msg with the input...
CVE-2024-0726 Project Worlds Student Project Allocation System Admin Login Module admin_login.php cross site scripting
A vulnerability was found in Project Worlds Student Project Allocation System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file adminlogin.php of the component Admin Login Module. The manipulation of the argument msg with the input...
CVE-2024-0726
CVE-2024-0726 affects Project Worlds Student Project Allocation System 1.0, specifically the Admin Login Module via the file admin_login.php. The vulnerability is a cross-site scripting (XSS) flaw caused by manipulating the msg argument (example input: test%22%3Cscript%3Ealert(%27Torada%27)%3C/sc...
CVE-2024-0726 Project Worlds Student Project Allocation System Admin Login Module admin_login.php cross site scripting
A vulnerability was found in Project Worlds Student Project Allocation System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file adminlogin.php of the component Admin Login Module. The manipulation of the argument msg with the input...