70 matches found
CVE-2026-51924
CVE-2026-51924 affects docuForm GmbH Client v.11.11c. A vulnerability in the file upload and report.php component allows a remote attacker to execute arbitrary code. Root cause: improper handling of uploaded files leading to code execution. Impacted product is documented; CVSSv3.1 base score 8.1 ...
CVE-2026-14796 CodeAstro Apartment Visitor Management System report.php sql injection
A vulnerability was found in CodeAstro Apartment Visitor Management System 1.0. This affects an unknown part of the file /apartment-visitor/report.php. Performing a manipulation of the argument fromdate results in sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2026-14796
CVE-2026-14796 affects CodeAstro Apartment Visitor Management System 1.0. Affected component: /apartment-visitor/report.php; vulnerability: SQL injection triggered by manipulating the fromdate parameter. Attackable remotely over network with no user interaction; attacker privileges required: LOW....
EUVD-2009-3515
Malware in sbrugna...
EUVD-2008-4359
Malware in sbrugna...
EUVD-2006-3253
Malware in sbrugna...
CVE-2025-8241 1000 Projects ABC Courier Management System report.php sql injection
A vulnerability, which was classified as critical, was found in 1000 Projects ABC Courier Management System 1.0. This affects an unknown part of the file /report.php. The manipulation of the argument From leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-6127 PHPGurukul Nipah Virus Testing Management System search-report.php cross site scripting
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /search-report.php. The manipulation of the argument serachdata leads to cross site scripting. The attack may be...
PT-2025-25566 · Unknown · Phpgurukul Nipah Virus Testing Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A vulnerability was found in the system, affecting some unknown functionality of the file /search-report.php. The manipulation of the serachdata argument leads to...
CVE-2025-5232 PHPGurukul Student Study Center Management System report.php sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Student Study Center Management System 1.0. This issue affects some unknown processing of the file /admin/report.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be initiate...
CVE-2022-2688
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetchreportcredit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may b...
CVE-2025-3315
The CVE-2025-3315 entry concerns SourceCodester Apartment Visitor Management System v1.0. Affected component: /view-report.php; root cause: improper handling of fromdate/todate parameters enables SQL injection. Impact is described as critical with potential remote exploitation and publicly disclo...
PT-2024-38701 · Unknown · Itsourcecode Project Expense Monitoring System
Name of the Vulnerable Software and Affected Versions: itsourcecode Project Expense Monitoring System version 1.0 Description: A critical vulnerability has been found in the itsourcecode Project Expense Monitoring System. This issue affects an unknown part of the file transferred report.php. The...
Cross-site Scripting (XSS)
Moodle/moodle is vulnerable to Cross-Site Scripting XSS. This vulnerability exists in the report.php because it does not properly validate user input, allowing an attacker to inject and execute malicious JavaScript in the browser...
CVE-2023-1300 SourceCodester COVID 19 Testing Management System POST Parameter patient-report.php sql injection
A vulnerability classified as critical was found in SourceCodester COVID 19 Testing Management System 1.0. Affected by this vulnerability is an unknown functionality of the file patient-report.php of the component POST Parameter Handler. The manipulation of the argument searchdata leads to sql...
Sql injection
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetchreportcredit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may b...
CVE-2022-2688
CVE-2022-2688 affects SourceCodester Expense Management System. The vulnerability resides in the POST Parameter Handler, specifically the fetch_report_credit function in report.php, where the from/to argument is manipulated, leading to a SQL injection. It is exploitable remotely and impacts confi...
PESCMS cross-site scripting vulnerability
A cross-site scripting vulnerability exists in PESCMS version V2.3.3, a content publishing platform. The vulnerability stems from App/Team/GET/Report.php missing a data validation filter for user-supplied data and output. An attacker could exploit the vulnerability to execute JavaScript code on t...
Cross-site Scripting (XSS)
moodle/moodle is vulnerable to stored cross-site scripting. The vulnerability exists in getquestionheading function in report.php due to lack of sanitization which allows an attacker to inject and execute arbitrary javascript...
CVE-2021-30034
Cross Site Scripting XSS in Remote Clinic v2.0 via the Symptons field on patients/register-report.php...