67 matches found
EUVD-2006-3253
Malware in sbrugna...
EUVD-2008-4359
Malware in sbrugna...
EUVD-2009-3515
Malware in sbrugna...
CVE-2025-8241 1000 Projects ABC Courier Management System report.php sql injection
A vulnerability, which was classified as critical, was found in 1000 Projects ABC Courier Management System 1.0. This affects an unknown part of the file /report.php. The manipulation of the argument From leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-6127 PHPGurukul Nipah Virus Testing Management System search-report.php cross site scripting
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /search-report.php. The manipulation of the argument serachdata leads to cross site scripting. The attack may be...
PT-2025-25566 · Unknown · Phpgurukul Nipah Virus Testing Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A vulnerability was found in the system, affecting some unknown functionality of the file /search-report.php. The manipulation of the serachdata argument leads to...
CVE-2025-5232 PHPGurukul Student Study Center Management System report.php sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Student Study Center Management System 1.0. This issue affects some unknown processing of the file /admin/report.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be initiate...
CVE-2022-2688
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetchreportcredit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may b...
CVE-2025-3315
The CVE-2025-3315 entry concerns SourceCodester Apartment Visitor Management System v1.0. Affected component: /view-report.php; root cause: improper handling of fromdate/todate parameters enables SQL injection. Impact is described as critical with potential remote exploitation and publicly disclo...
PT-2024-38701 · Unknown · Itsourcecode Project Expense Monitoring System
Name of the Vulnerable Software and Affected Versions: itsourcecode Project Expense Monitoring System version 1.0 Description: A critical vulnerability has been found in the itsourcecode Project Expense Monitoring System. This issue affects an unknown part of the file transferred report.php. The...
Cross-site Scripting (XSS)
Moodle/moodle is vulnerable to Cross-Site Scripting XSS. This vulnerability exists in the report.php because it does not properly validate user input, allowing an attacker to inject and execute malicious JavaScript in the browser...
CVE-2023-1300 SourceCodester COVID 19 Testing Management System POST Parameter patient-report.php sql injection
A vulnerability classified as critical was found in SourceCodester COVID 19 Testing Management System 1.0. Affected by this vulnerability is an unknown functionality of the file patient-report.php of the component POST Parameter Handler. The manipulation of the argument searchdata leads to sql...
Sql injection
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetchreportcredit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may b...
CVE-2022-2688
CVE-2022-2688 affects SourceCodester Expense Management System. The vulnerability resides in the POST Parameter Handler, specifically the fetch_report_credit function in report.php, where the from/to argument is manipulated, leading to a SQL injection. It is exploitable remotely and impacts confi...
PESCMS cross-site scripting vulnerability
A cross-site scripting vulnerability exists in PESCMS version V2.3.3, a content publishing platform. The vulnerability stems from App/Team/GET/Report.php missing a data validation filter for user-supplied data and output. An attacker could exploit the vulnerability to execute JavaScript code on t...
Cross-site Scripting (XSS)
moodle/moodle is vulnerable to stored cross-site scripting. The vulnerability exists in getquestionheading function in report.php due to lack of sanitization which allows an attacker to inject and execute arbitrary javascript...
CVE-2021-30034
Cross Site Scripting XSS in Remote Clinic v2.0 via the Symptons field on patients/register-report.php...
CVE-2021-30039
CVE-2021-30039 affects Remote Clinic v2.0. The vulnerability is a Cross-Site Scripting (XSS) flaw in the web form fields at patients/register-report.php, specifically the Fever and Blood Pressure fields. Root cause: inadequate input validation/sanitization allowing script injection that can execu...
CVE-2021-30039
Cross Site Scripting XSS in Remote Clinic v2.0 via the "Fever" or "Blood Pressure" field on the patients/register-report.php...
CVE-2018-11133
The 'fmt' parameter of the '/common/runcrossreport.php' script in the the Quest KACE System Management Appliance 8.0.318 is vulnerable to cross-site scripting...