CVE-2025-11390

A weakness has been identified in PHPGurukul Cyber Cafe Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /search.php of the component POST Parameter Handler. Executing a manipulation of the argument searchdata can lead to cross site scripting. The atta...

CVE-2025-7474 code-projects Job Diary search.php sql injection

A vulnerability was found in code-projects Job Diary 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /search.php. The manipulation of the argument Search leads to sql injection. The attack may be launched remotely. The exploit has been disclose...

CVE-2025-6353 code-projects Responsive Blog search.php cross site scripting

A vulnerability classified as problematic was found in code-projects Responsive Blog 1.0. Affected by this vulnerability is an unknown functionality of the file /search.php. The manipulation of the argument keyword leads to cross site scripting. The attack can be launched remotely. The exploit ha...

CVE-2025-5404 chaitak-gorai Blogbook GET Parameter search.php denial of service

A vulnerability classified as problematic was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This vulnerability affects unknown code of the file /search.php of the component GET Parameter Handler. The manipulation of the argument Search leads to denial of service...

CVE-2025-5404

CVE-2025-5404 affects chaitak-gorai Blogbook, specifically the GET Parameter Handler in /search.php where manipulating the Search argument leads to a denial of service. The initial and multiple accompanying sources (NVD, Red Hat, CVE List, Vulners enrichments) identify this as a publicly disclose...

CVE-2024-4072

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been classified as problematic. Affected is an unknown function of the file search.php. The manipulation of the argument txtSearch leads to cross site scripting. It is possible to launch the attack...

CVE-2023-3858

A vulnerability has been found in phpscriptpoint Car Listing 1.6 and classified as problematic. This vulnerability affects unknown code of the file /search.php. The manipulation of the argument country/state/city leads to cross site scripting. The attack can be initiated remotely. VDB-235210 is t...

Cyber Cafe Management System search.php File SQL Injection Vulnerability

Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchdata in the file /search.php. An attacker can exploit this...

CVE-2025-2058 PHPGurukul Emergency Ambulance Hiring Portal search.php sql injection

A vulnerability has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched...

mvmmall shop Mall system injection vulnerability-vulnerability warning-the black bar safety net

mvmmall shop Mall system, the latest injection 0day issues out in the search search. php this file. The code is as follows: ? php requireonce ‘include/common.inc.php’; requireonce ROOTPATH.’header.php’; if$action!=’ search’ $searchkey = ”; if isset$pssearch //Omitted a bunch of stuff $tagids =...

Cross Site Scripting in XOOPS Version 2.x Dictionary module

-------------------------------------------------------------------------- Cross Site Scripting in XOOPS Version 2.x Dictionary module -------------------------------------------------------------------------- Type: Cross Site Scripting XSS Titule: Xoops Dictionary module by nagl Date: August 28,...

Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection

Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection source: https://www.securityfocus.com/bid/5468/info Reportedly, L-Forum is vulnerable to SQL injection attacks. The vulnerability lies in the file 'search.php' L-Forum does not properly sanitize user input that is used as part of the sear...

Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection

source: https://www.securityfocus.com/bid/5468/info Reportedly, L-Forum is vulnerable to SQL injection attacks. The vulnerability lies in the file 'search.php' L-Forum does not properly sanitize user input that is used as part of the search parameter in the 'search.php' file. SQL code may be...