AI tool GeoSpy analyzes images and identifies locations in seconds

It's just become even more important to be conscious about the pictures we post online. GeoSpy is an Artificial Intelligence AI supported tool that can derive a person’s location by analyzing features in a photo like vegetation, buildings, and other landmarks. And it can do so in seconds based on...

CVE-2024-11101

A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/search-invoices.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack...

CVE-2024-11077

CVE-2024-11077 affects code-projects Job Recruitment 1.0. The vulnerability is a SQL injection in an unknown function within /index.php triggered by manipulating the email parameter. Exploitation is remote and was disclosed publicly. Impact is described as high/critical across sources, with poten...

CVE-2024-10845

A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file bookdetail.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-10290 ZZCMS inc.php information disclosure

A vulnerability, which was classified as problematic, was found in ZZCMS 2023. This affects an unknown part of the file 3/qq-connect2.0/API/com/inc.php. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public a...

CVE-2024-10155

The CVE-2024-10155 entry affects PHPGurukul Boat Booking System 1.0, specifically the Book a Boat Page component, in file book-boat.php?bid=1. The vulnerability arises from manipulation of the phone_number parameter, enabling cross-site scripting (XSS) and allowing remote initiation of attacks. P...

CVE-2024-8560

The CVE-2024-8560 entry affects SourceCodester Simple Invoice Generator System 1.0. A vulnerability in the /save_invoice.php function allows SQL injection via manipulated parameters (invoice_code, customer, cashier, total_amount, discount_percentage, discount_amount, tendered_amount) and can be e...

CVE-2024-8144

A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2024-4494

A vulnerability has been found in Tenda i21 1.0.0.144656 and classified as critical. Affected by this vulnerability is the function formSetUplinkInfo of the file /goform/setUplinkInfo. The manipulation of the argument pingHostIp2 leads to stack-based buffer overflow. The attack can be launched...

CVE-2024-4292 Contemporary Controls BASrouter BACnet BASRT-B Device-Communication-Control Service denial of service

A vulnerability classified as critical has been found in Contemporary Controls BASrouter BACnet BASRT-B 2.7.2. Affected is an unknown function of the component Device-Communication-Control Service. The manipulation with the input 55ff0500370015f30104025506110afb7519035d0841e4bece257b6acfc71f lead...

OSINT-Framework - OSINT Framework

OSINT framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources. Some of the sites included might require registration or offer more data for $$$, but you should be able to get at least a portion of the available information...

Cross site scripting

A vulnerability classified as problematic was found in AlexanderLivanov FotosCMS2 up to 2.4.3. This vulnerability affects unknown code of the file profile.php of the component Cookie Handler. The manipulation of the argument username leads to cross site scripting. The attack can be initiated...

Cross site scripting

A vulnerability was found in SourceCodester Online Motorcycle Rental System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/?page=bike of the component Bike List. The manipulation of the argument Model with the input "confirm document.cookie...