CVE-2025-6122 code-projects Restaurant Order System table.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Restaurant Order System 1.0. This affects an unknown part of the file /table.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...

CVE-2025-5973 PHPGurukul Restaurant Table Booking System add-table.php cross site scripting

A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add-table.php. The manipulation of the argument tableno leads to cross site scripting. The attack can be launched...

Cross site scripting

The Asgaros Forums WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the name parameter found in the /admin/tables/admin-structure-table.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to...

CVE-2019-14695

A SQL injection vulnerability exists in the Sygnoos Popup Builder plugin before 3.45 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via com/libs/Table.php because Subscribers Table ordering is...

CVE-2014-6604

Cross-site scripting XSS vulnerability in class-s2-list-table.php in the Subscribe2 plugin before 10.16 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ip parameter...

Cross-site Scripting (XSS)

automattic/jetpack is vulnerable to cross-site scripting XSS attacks. The attacks are possible because it does not escape the URL parameter in class.jetpack-modules-list-table.php...

hos.com XSS vulnerability

Vulnerable URL: https://www.hos.com/php/radiochannel-table.php?channel=1"...

CVE-2017-5612

Cross-site scripting XSS vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via a crafted excerpt...

CVE-2017-5612

Cross-site scripting XSS vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via a crafted excerpt...

CVE-2017-5612

Cross-site scripting XSS vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via a crafted excerpt...

CVE-2016-5833

CVE-2016-5833 is a cross-site scripting (XSS) vulnerability in WordPress affecting WordPress core prior to 4.5.3. The issue resides in the column_title function of wp-admin/includes/class-wp-media-list-table.php, which allows remote attackers to inject arbitrary script or HTML via a crafted attac...

WordPress < 3.3.3 / 3.4.0 Multiple Vulnerabilities

According to its version number, the WordPress install hosted on the remote web server is affected by the following vulnerabilities : - A cross-site scripting flaw exists in the 'edit-tags.php' script where it does not validate the 'slug' parameter upon submission. This could allow a remote...

Information disclosure

wp-admin/includes/class-wp-posts-list-table.php in WordPress before 3.3.3 does not properly restrict excerpt-view access, which allows remote authenticated users to obtain sensitive information by visiting a draft...

flap-rfi.txt

FlaP v.1.0. Beta / RFI CODE BUG2: Example1:http://victim.com/path/login.php?pachtofile=Sh3LL Script Script Download http://scripts.protoplex.ru/scriptsshow/1854.html Cyber-Security...

FlaP 1.0b - pachtofile Remote File Inclusion

FlaP 1.0b - pachtofile Remote File Inclusion FlaP v.1.0. Beta = Remote File Inclusion Vulnerability Vuln Code ERROR1:skin/html/table.php ? include "$pachtofile/leftmenu.php"; RFI CODE BUG1: Example1:http://victim.com/path/skin/html/table.php?pachtofile=Sh3LL Script...