9 matches found
EUVD-2023-55600
Malicious code in bioql PyPI...
Kashipara Music Management System 安全漏洞
Kashipara Music Management System is a music management system from Kashipara. A file upload vulnerability exists in Kashipara Music Management System version 1.0, which stems from the lack of validation of uploaded files in /music/ajax.php?action=signup, and can be exploited by an attacker to...
PT-2024-22330 · Unknown · Yourspotify
Name of the Vulnerable Software and Affected Versions: YourSpotify versions prior to 1.9.0 Description: The issue concerns a clickjacking vulnerability that can be used to trick an existing user into triggering actions, such as allowing signup of other users or deleting the current user account...
CVE-2023-50867
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the signupAction.php resource does not validate the characters received and they are sent unfiltered to the database...
Travel Website SQL Injection Vulnerability
Travel Website is a PHP-based travel website. A SQL injection vulnerability exists in Travel Website v1.0, which occurs when the username parameter of the signupAction.php page is processed without filtering before sending the data to the database for processing...
CVE-2015-6519
SQL injection vulnerability in Arab Portal 3 allows remote attackers to execute arbitrary SQL commands via the showemail parameter in a signup action to members.php...
Sql injection
SQL injection vulnerability in Arab Portal 3 allows remote attackers to execute arbitrary SQL commands via the showemail parameter in a signup action to members.php...
CVE-2015-6519
SQL injection vulnerability in Arab Portal 3 allows remote attackers to execute arbitrary SQL commands via the showemail parameter in a signup action to members.php...
PT-2004-2607 · Fusion · Fusion News
Name of the Vulnerable Software and Affected Versions: Fusion News version 3.6.1 Description: The issue allows remote attackers to add user accounts if the administrator is logged in. This can be achieved by including an img bbcode tag in a comment that calls index.php with the signup action. The...