Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-28898

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00193EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28904

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00309EPSS
Exploits0References2
OSV
OSV
added 2025/09/11 12:15 p.m.7 views

CVE-2025-40695

Stored Cross Site Scripting in Online Fire Reporting System v1.2 by PHPGurukul, that consists in a stored authenticated XSS due to the lack of propper validation of user inputs 'remark', 'status' and 'takeaction' parameters via POST at the endpoint '/ofrs/admin/request-details.php'. This...

5.4CVSS5.9AI score0.00193EPSS
Exploits0References1
NVD
NVD
added 2025/09/11 12:15 p.m.4 views

CVE-2025-40689

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.8CVSS0.00309EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 12:15 p.m.5 views

CVE-2025-40689

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.8CVSS5.9AI score0.00309EPSS
Exploits0References1
CVE
CVE
added 2025/09/11 11:46 a.m.22 views

CVE-2025-40695

The CVE-2025-40695 affects the Online Fire Reporting System (OFRS) v1.2. A stored XSS exists in the /ofrs/admin/request-details.php endpoint due to insufficient validation of POST parameters remark, status, and takeaction. This authenticated vulnerability could allow a remote attacker to inject s...

5.4CVSS5.1AI score0.00193EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/11 11:21 a.m.7 views

CVE-2025-40689 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

9.3CVSS0.00309EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.3 views

Online Fire Reporting System SQL注入漏洞

Online Fire Reporting System is an online fire reporting system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Online Fire Reporting System version 1.2, which stems from incorrect manipulation of the parameters mark, status, and requestid in the endpoint...

9.8CVSS7.7AI score0.00309EPSS
Exploits0References1
Rows per page
Query Builder