161 matches found
EUVD-2021-11819
Malware in sbrugna...
EUVD-2025-28742
Malicious code in bioql PyPI...
EUVD-2025-27519
Malicious code in bioql PyPI...
EUVD-2025-28904
Malicious code in bioql PyPI...
EUVD-2023-50285
Malicious code in bioql PyPI...
CVE-2025-40689
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...
CVE-2025-10142
The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...
CVE-2025-40689
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...
CVE-2025-40689 SQL injection in PHPGurukul Online Fire Reporting System
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...
CVE-2025-40689 SQL injection in PHPGurukul Online Fire Reporting System
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...
CVE-2025-40689
CVE-2025-40689 affects Online Fire Reporting System v1.2 (PHPGurukul). The vulnerability is a SQL Injection in the /ofrs/admin/request-details.php endpoint, exploitable via the remark, status, and requestid parameters, enabling an attacker to retrieve, create, update, and delete records in the ba...
PT-2025-37171
Name of the Vulnerable Software and Affected Versions: Online Fire Reporting System version 1.2 Description: The Online Fire Reporting System is susceptible to SQL Injection attacks. An attacker can potentially retrieve, create, update, and delete database information through the remark, status,...
SQL Injection
Overview ricardomartins/pagbank-woocommerce is a WooCommerce integration with discount on official rates Affected versions of this package are vulnerable to SQL Injection via the status parameter due to insufficient escaping and lack of proper preparation in the SQL query. An attacker can extract...
CVE-2025-10142
The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...
CVE-2025-10142
The CVE-2025-10142 vulnerability affects the PagBank / PagSeguro Connect para WooCommerce plugin for WordPress. It is a SQL Injection via the status parameter in all versions up to 4.44.3, caused by insufficient escaping and inadequate query preparation. Authenticated attackers with Shop Manager-...
CVE-2025-10142 PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection
The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...
CVE-2025-10142 PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection
The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...
WordPress plugin PagBank / PagSeguro Connect para WooCommerce SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A SQL injection...
Inventory Management System createBrand.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter brandStatus of file /phpaction/createBrand.php. An attacker can...
Code-Projects Inventory Management System 注入漏洞
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter brandStatus of file /phpaction/createBrand.php. An attacker can...