4 matches found
CVE-2025-4882 itsourcecode Restaurant Management System team_update.php sql injection
A vulnerability was found in itsourcecode Restaurant Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/teamupdate.php. The manipulation of the argument team leads to sql injection. It is possible to initiate the attack remotely. The exploit...
itsourcecode Restaurant Management System 注入漏洞
itsourcecode Restaurant Management System is itsourcecode open source a restaurant management system . An injection vulnerability exists in version 1.0 of itsourcecode Restaurant Management System, which is caused by incorrect manipulation of the parameter team in the file /admin/teamupdate.php,...
PT-2024-33259 · Unknown · Berriai/Litellm
Name of the Vulnerable Software and Affected Versions: berriai/litellm version 1.27.14 Description: A blind SQL injection issue exists in the application, specifically within the "/team/update" process. This issue arises due to the improper handling of the user id parameter in the raw SQL query...
Improper Input Validation
Description At the team updatehttps://ripob47346.getoutline.com/api/team.update and user updatehttps://ripob47346.getoutline.com/api/users.update functions, avatarUrl was not verified as a correct url. The user can enter arbitrary values. Proof of Concept /api/team.update /api/users.update Result...