Lucene search
K

4 matches found

EUVD
EUVD
added 2026/01/09 12:30 a.m.8 views

EUVD-2026-1658

A flaw has been found in PHPGurukul Staff Leave Management System 1.0. The affected element is the function ADDSTAFF/UPDATESTAFF of the file /staffleave/slms/slms/adminviews.py of the component SVG File Handler. Executing a manipulation of the argument profilepic can lead to cross site scripting...

4.8CVSS5.1AI score0.00238EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/01/08 10:2 p.m.4 views

CVE-2026-0730 PHPGurukul Staff Leave Management System SVG File adminviews.py UPDATE_STAFF cross site scripting

A flaw has been found in PHPGurukul Staff Leave Management System 1.0. The affected element is the function ADDSTAFF/UPDATESTAFF of the file /staffleave/slms/slms/adminviews.py of the component SVG File Handler. Executing a manipulation of the argument profilepic can lead to cross site scripting...

4.8CVSS5.2AI score0.00238EPSS
Exploits1References5
CVE
CVE
added 2026/01/08 10:2 p.m.14 views

CVE-2026-0730

PHPGurukul Staff Leave Management System 1.0 is affected by a cross-site scripting vulnerability in the SVG File Handler, specifically the ADD_STAFF/UPDATE_STAFF function in /staffleave/slms/slms/adminviews.py. Manipulating the profile_pic argument can trigger XSS, with remote exploitation report...

4.8CVSS5.2AI score0.00238EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/01/08 10:2 p.m.30 views

CVE-2026-0730 PHPGurukul Staff Leave Management System SVG File adminviews.py UPDATE_STAFF cross site scripting

A flaw has been found in PHPGurukul Staff Leave Management System 1.0. The affected element is the function ADDSTAFF/UPDATESTAFF of the file /staffleave/slms/slms/adminviews.py of the component SVG File Handler. Executing a manipulation of the argument profilepic can lead to cross site scripting...

4.8CVSS0.00238EPSS
Exploits1References5
Rows per page
Query Builder