38 matches found
Roundcube Webmail -- Multiple vulnerabilities
The Roundcube Webmail project reports: See link for details. No CVE numbers available at the moment...
CVE-2025-20383 Improper access control through push notifications for reports and alerts in Splunk Secure Gateway app
In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive...
CVE-2025-56075
A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...
OSV-2025-677 Heap-buffer-overflow in TGAHandler::read
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=440374852 Crash type: Heap-buffer-overflow WRITE 4 Crash state: TGAHandler::read kimgiofuzzer.cc LLVMFuzzerRunDriver...
CVE-2025-49482
creationtimestamp| type| source ---|---|--- 2025-07-01 12:10:34+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/20021 2025-07-01 12:26:45+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114777968065544988 2025-07-01 13:17:44+00:00| seen|...
Emergency Ambulance Hiring Portal bwdates-request-report-details.php File SQL Injection Vulnerability
Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter fromdate/todate in the file...
PHPGurukul Emergency Ambulance Hiring Portal 注入漏洞
Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter fromdate/todate in the file...
CVE-2025-5234
creationtimestamp| type| source ---|---|--- 2025-06-19 09:43:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18843 2025-06-19 13:48:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrxo263ccw2p...
Dairy Farm Shop Management System /bwdate-report-details.php File SQL Injection Vulnerability
Dairy Farm Shop Management System is a PHP and MySQL based dairy farm management system . Dairy Farm Shop Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the fromdate/todate parameter in the file /bwdate-report-details.php for externally...
CVE-2025-5578
A vulnerability has been found in PHPGurukul Dairy Farm Shop Management System 1.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sales-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can ...
CVE-2025-5576
A vulnerability, which was classified as critical, has been found in PHPGurukul Dairy Farm Shop Management System 1.3. This issue affects some unknown processing of the file /bwdate-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be...
CVE-2025-5578
CVE-2025-5578 affects PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability is a SQL injection in the /sales-report-details.php file, triggered by manipulating the fromdate/todate parameters. It is exploitable remotely and has been disclosed publicly. Multiple connected sources corr...
CVE-2025-5576 PHPGurukul Dairy Farm Shop Management System bwdate-report-details.php sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Dairy Farm Shop Management System 1.3. This issue affects some unknown processing of the file /bwdate-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be...
PHPGurukul Dairy Farm Shop Management System SQL注入漏洞
Dairy Farm Shop Management System is a PHP and MySQL based dairy farm management system . Dairy Farm Shop Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter fromdate/todate in the file...
PHPGurukul Dairy Farm Shop Management System SQL注入漏洞
Dairy Farm Shop Management System is a PHP and MySQL based dairy farm management system . Dairy Farm Shop Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the fromdate/todate parameter in the file /bwdate-report-details.php for externally...
PT-2025-23785 · Unknown · Phpgurukul Dairy Farm Shop Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Dairy Farm Shop Management System version 1.3 Description: A critical issue has been discovered, affecting an unknown functionality of the file /sales-report-details.php. The manipulation of the fromdate and todate arguments leads ...
CVE-2025-5230
A vulnerability classified as critical has been found in PHPGurukul Online Nurse Hiring System 1.0. This affects an unknown part of the file /admin/bwdates-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack remotely...
CVE-2025-5230 PHPGurukul Online Nurse Hiring System bwdates-report-details.php sql injection
A vulnerability classified as critical has been found in PHPGurukul Online Nurse Hiring System 1.0. This affects an unknown part of the file /admin/bwdates-report-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack remotely...
PHPGurukul Online Nurse Hiring System 注入漏洞
PHPGurukul Online Nurse Hiring System is an online nurse hiring system from PHPGurukul, Inc. An injection vulnerability exists in version 1.0 of the PHPGurukul Online Nurse Hiring System, which stems from an incorrect manipulation of the parameter fromdate/todate in the file...
CVE-2025-45015
A Cross-Site Scripting XSS vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. The vulnerability allows remote attackers to inject arbitrary JavaScript code via the fromdate and todate parameters...