CVE-2024-24141

Sourcecodester School Task Manager App 1.0 allows SQL Injection via the 'task' parameter...

PT-2024-20293 · Unknown · Sourcecodester School Task Manager

Name of the Vulnerable Software and Affected Versions: Sourcecodester School Task Manager App version 1.0 Description: The issue allows SQL Injection via the task parameter. This could potentially be exploited to extract or modify sensitive data. There is no information provided about the estimat...

Kanboard Security Breach

Kanboard is a suite of open source visual task board software. The software has the ability to customize the panels according to the business. A security vulnerability exists in Kanboard version 1.2.34 that stems from vulnerability to HTML injection attacks...

Fedora: Security Advisory (FEDORA-2024-0d894565a0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2024-21464

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue is related to the do task stat function, which can trigger a hard lockup if NR CPUS threads call it at the same time and...

Exploit for SQL Injection in Rems School_Task_Manager

CVE-2024-24142: School-Task-Manager-System-SQL-Inject...

PT-2024-4081 · Unknown · Sourcecodester School Task Manager

Name of the Vulnerable Software and Affected Versions: Sourcecodester School Task Manager version 1.0 Description: The issue is related to a lack of protection against SQL injection attacks. An attacker can exploit this to gain unauthorized access to the application's database through the subject...

Exploit for SQL Injection in Remyandrade School_Task_Manager

CVE-2024-24141: School-Task-Manager-System-SQLInject...

CVE-2016-15037

A vulnerability, which was classified as problematic, has been found in go4rayyan Scumblr up to 2.0.1a. Affected by this issue is some unknown functionality of the component Task Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. Upgrading to version 2.0...

CVE-2016-15037 go4rayyan Scumblr Task cross site scripting

A vulnerability, which was classified as problematic, has been found in go4rayyan Scumblr up to 2.0.1a. Affected by this issue is some unknown functionality of the component Task Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. Upgrading to version 2.0...

CVE-2016-15037 go4rayyan Scumblr Task cross site scripting

A vulnerability, which was classified as problematic, has been found in go4rayyan Scumblr up to 2.0.1a. Affected by this issue is some unknown functionality of the component Task Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. Upgrading to version 2.0...

PT-2024-10571 · Go4Rayyan · Scumblr

Name of the Vulnerable Software and Affected Versions: go4rayyan Scumblr versions up to 2.0.1a Description: A problematic issue has been found in the component Task Handler, leading to cross site scripting. The manipulation can be launched remotely. It is estimated that some unknown functionality...

Scumblr Cross-Site Scripting Vulnerability

Scumblr is a web application for Netflix-Skunkworks Individual Developers that allows for periodic synchronization of data sources e.g., Github repositories and URLs and performs analysis of the identified results e.g., static analyses, dynamic inspections, and metadata collection. A cross-site...

CVE-2023-49943

Zoho ManageEngine ServiceDesk Plus MSP before 14504 allows stored XSS by a low-privileged technician via a task's name in a time sheet...

CVE-2023-49943

Zoho ManageEngine ServiceDesk Plus MSP before 14504 allows stored XSS by a low-privileged technician via a task's name in a time sheet...

PT-2024-13838 · Zoho · Zoho Manageengine Servicedesk Plus

Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine ServiceDesk Plus MSP versions prior to 14504 Description: The issue allows stored XSS via a task's name in a time sheet, which can be exploited by a low-privileged technician. Recommendations: For versions prior to 14504,...

pyGPOAbuse - Partial Python Implementation Of SharpGPOAbuse

Python partial implementation of SharpGPOAbuse by@pkb1s This tool can be used when a controlled account can modify an existing GPO that applies to one or more users & computers. It will create an immediate scheduled task as SYSTEM on the remote computer for computer GPO, or as logged in user for...

Taokeyun SQL Injection Vulnerability

Taokeyun is a shopping mall system by jifeer personal developer. A SQL injection vulnerability exists in Taokeyun version 1.0.5 and earlier versions, which originates from a SQL injection vulnerability in the cid parameter of the index function in the application/index/controller/app/Task.php fil...

PT-2024-15600 · Taokeyun · Taokeyun

Name of the Vulnerable Software and Affected Versions: Taokeyun versions up to 1.0.5 Description: A critical issue was found in the HTTP POST Request Handler component, specifically affecting the function index of the file application/index/controller/app/Task.php. The manipulation of the cid...

Video series discussing the major threat actor trends from 2023

In this video series, Talos Director of Threat Intelligence and Interdiction Matt Olney and Head of Outreach Nick Biasini share their insights on the most significant cybersecurity threats from the past year. From attacks on network infrastructure to the latest APT activities, as well as an updat...