PT-2025-34579 · Unknown · Huangdou Utcms Version 9

Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version 9 Description: A flaw exists in the Login component's code within the app/modules/ut-frame/admin/login.php file. Manipulation of the code related to an argument results in an incorrect comparison. This issue can be...

CVE-2025-5299

A vulnerability was found in SourceCodester Client Database Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /userordercustomerupdate.php. The manipulation of the argument uploadedfilecancelled leads to unrestricted upload. The attack ca...

CVE-2025-3252

A vulnerability has been found in xujiangfei admintwo 1.0 and classified as problematic. This vulnerability affects unknown code of the file /resource/add. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to...

Information disclosure

A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...

CVE-2023-2670

CVE-2023-2670 affects SourceCodester Lost and Found Information System v1.0, with an improper access control issue in the admin/?page=user/manage_user path. The vulnerability enables remote exploitation and is conditioned on unknown code, with the exploit publicly disclosed (VDB-228886). Multiple...

AdMan v1.0.x SQL vuln

AdMan v1.0.x SQL vuln Vuln. discovered by : r0t Date: 23 march 2006 vendor:www.formfields.com/adManArea/ affected versions: v1.0.20051221 and prior orginal advisory: http://pridels.blogspot.com/2006/03/adman-v10x-sql-vuln.html SQL vuln. AdMan contains a flaw that allows a remote sql injection...