78 matches found
PT-2026-31553
A weakness has been identified in itsourcecode Construction Management System 1.0. Affected by this issue is some unknown functionality of the file /borrowed tool report.php. This manipulation of the argument Home causes sql injection. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-58112
Microsoft Dynamics 365 Customer Engagement on-premises 1612 9.0.2.3034 allows the generation of customized reports via raw SQL queries in an upload of a .rdl Report Definition Language file; this is then processed by the SQL Server Reporting Service. An account with the privilege Add Reporting...
EUVD-2025-205371
A vulnerability was detected in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /listreport.php. The manipulation of the argument sy results in sql injection. The attack may be launched remotely. The exploit is now public and may be used...
PT-2025-53388
Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A flaw exists in itsourcecode Student Management System 1.0 that allows for remote SQL injection. The issue is located in the file /list report.php and involves manipulation of the...
itsourcecode Student Management System SQL注入漏洞
itsourcecode Student Management System is an itsourcecode open source student management system. SQL injection vulnerability exists in itsourcecode Student Management System version 1.0, which originates from an unknown function in the file /candidatesreport.php that improperly handles the...
Arcserve UDP < 5.0 Update 4 Directory Traversal
The Arcserve Unified Data Protection UDP application running on the remote host is affected by a directory traversal vulnerability. An unauthenticated, remote attacker can exploit this, via a crafted file path to the 1 reportFileServlet or 2 exportServlet servlet, to obtain sensitive information ...
0-DAY
0-DAYzero-day !Repo Statushttps://img.shields.io/badge/...
EUVD-2011-2753
Malware in sbrugna...
EUVD-2021-12576
Malware in sbrugna...
EUVD-2023-1332
Malicious code in bioql PyPI...
EUVD-2025-27117
Malicious code in bioql PyPI...
EUVD-2025-24984
Malicious code in bioql PyPI...
EUVD-2023-31706
Malicious code in bioql PyPI...
Online Fire Reporting System SQL注入漏洞
Online Fire Reporting System is an online fire reporting system developed by Carlo Montero, an individual developer. A SQL injection vulnerability exists in Online Fire Reporting System version 1.2, which stems from an incorrect manipulation of the parameter todate in the file...
CVE-2025-10087 SourceCodester Pet Grooming Management Software profit_report.php sql injection
A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0. Impacted is an unknown function of the file /admin/profitreport.php. Such manipulation of the argument productid leads to sql injection. The attack can be launched remotely. The exploit has been...
CVE-2025-10087 SourceCodester Pet Grooming Management Software profit_report.php sql injection
A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0. Impacted is an unknown function of the file /admin/profitreport.php. Such manipulation of the argument productid leads to sql injection. The attack can be launched remotely. The exploit has been...
Apartment Management System unit_status_info.php File SQL Injection Vulnerability
Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter usid in the file /report/unitstatusinfo.php. An attacker can exploit...
CVE-2025-9702
A vulnerability was identified in SourceCodester Simple Cafe Billing System 1.0. This affects an unknown function of the file /salesreport.php. The manipulation of the argument month leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...
PT-2025-35379
Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Cafe Billing System version 1.0 Description: A SQL injection issue exists in SourceCodester Simple Cafe Billing System 1.0. The vulnerability is located in the /sales report.php file, affecting an unknown function...
CVE-2025-9593
Affected software: itsourcecode Apartment Management System 1.0. The vulnerability is an SQL injection in the /report/unit_status_info.php file caused by unsafely handling the usid parameter. This allows remote exploitation and an exploit has been published. Connected advisories confirm the issue...