CVE-2026-3057 a54552239 pearProjectApi Backend Task.php dateTotalForProject sql injection

A security flaw has been discovered in a54552239 pearProjectApi up to 2.8.10. Affected is the function dateTotalForProject of the file application/common/Model/Task.php of the component Backend Interface. The manipulation of the argument projectCode results in sql injection. The attack can be...

CVE-2024-2570

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /edit-task.php. The manipulation leads to execution after redirect. It is possible to initiate the attack remotely. The exploit has been...

EUVD-2025-202294

Cross-site scripting XSS vulnerability in function urltestAction in file cliAction.php in Xinhu Rainrock RockOA 2.7.0 allows remote attackers to inject arbitrary web script or HTML via the m parameter to the task.php endpoint...

CVE-2025-63737

Xinhu Rainrock RockOA 2.7.0 is affected by a Cross-site Scripting (XSS) vulnerability in the urltestAction function of cliAction.php. The issue allows remote attackers to inject arbitrary web scripts or HTML via the m parameter to the /task.php endpoint. The attack surface is the RockOA 2.7.0 dep...

PT-2025-50096

Name of the Vulnerable Software and Affected Versions Xinhu Rainrock RockOA version 2.7.0 Description A cross-site scripting XSS issue exists in the urltestAction function within the cliAction.php file. This allows attackers to inject arbitrary web scripts or HTML code through the m parameter of...

EUVD-2005-2431

Malware in sbrugna...

EUVD-2024-23782

Malicious code in bioql PyPI...

CVE-2024-3225

A vulnerability was found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file edit-task.php. The manipulation of the argument taskid leads to sql injection. The attack may be launched remotely. The exploit h...

CVE-2024-26517

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...

CVE-2024-8140

A vulnerability was found in SourceCodester Task Progress Tracker 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file update-task.php. The manipulation of the argument taskname leads to cross site scripting. The attack may be launched remotely. The...

CVE-2024-8140 SourceCodester Task Progress Tracker update-task.php cross site scripting

A vulnerability was found in SourceCodester Task Progress Tracker 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file update-task.php. The manipulation of the argument taskname leads to cross site scripting. The attack may be launched remotely. The...

CVE-2024-8140 SourceCodester Task Progress Tracker update-task.php cross site scripting

A vulnerability was found in SourceCodester Task Progress Tracker 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file update-task.php. The manipulation of the argument taskname leads to cross site scripting. The attack may be launched remotely. The...

CVE-2024-8140

CVE-2024-8140 affects SourceCodester Task Progress Tracker 1.0. The vulnerability is in the file update-task.php where manipulation of the parameter task_name enables Cross-Site Scripting (XSS) . Exploitation can be remote and the exploit has been disclosed publicly. Public sources consistently i...

CVE-2024-7793 SourceCodester Task Progress Tracker add-task.php cross site scripting

A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-task.php. The manipulation of the argument taskname leads to cross site scripting. The attack can be...

CVE-2024-7793 SourceCodester Task Progress Tracker add-task.php cross site scripting

A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-task.php. The manipulation of the argument taskname leads to cross site scripting. The attack can be...

CVE-2024-7793

CVE-2024-7793 affects SourceCodester Task Progress Tracker 1.0. A vulnerability in the file /endpoint/add-task.php arises from unsafely handling the task_name parameter, enabling cross-site scripting. The issue is exploitable remotely and has been publicly disclosed. Multiple sources corroborate ...

CVE-2024-26517

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...

CVE-2024-28613

SQL Injection vulnerability in PHP Task Management System v.1.0 allows a remote attacker to escalate privileges and obtain sensitive information via the taskid parameter of the task-details.php, and edit-task.php component...

SourceCodester Task Management System SQL注入漏洞

SourceCodester Task Management System is a task management system. A SQL injection vulnerability exists in SourceCodester Task Management System version 1.0, which originates from a SQL injection vulnerability in the taskid parameter of the file edit-task.php...

CVE-2024-2570 SourceCodester Employee Task Management System edit-task.php redirect

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /edit-task.php. The manipulation leads to execution after redirect. It is possible to initiate the attack remotely. The exploit has been...