CVE-2025-5618 PHPGurukul Online Fire Reporting System edit-team.php sql injection

A vulnerability classified as critical was found in PHPGurukul Online Fire Reporting System 1.2. This vulnerability affects unknown code of the file /admin/edit-team.php. The manipulation of the argument teamid leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2020-23977

KandNconcepts Club CMS 1.1 and 1.2 has cross site scripting via the 'team.php,player.php,club.php' id parameter...

CVE-2020-23977

KandNconcepts Club CMS 1.1 and 1.2 has cross site scripting via the 'team.php,player.php,club.php' id parameter...

CVE-2020-23973

KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter...

Cross site scripting

KandNconcepts Club CMS 1.1 and 1.2 has cross site scripting via the 'team.php,player.php,club.php' id parameter...

npf.805stats.com XSS vulnerability

Open Bug Bounty ID: OBB-388793 Description| Value ---|--- Affected Website:| npf.805stats.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

thecityground.com XSS vulnerability

Vulnerable URL: http://www.thecityground.com/team.php?opponentparent=1"...

Oberliga - team.php team Parameter SQL Injection

The oberligatheme WordPress theme was affected by a team.php team Parameter SQL Injection security vulnerability...

J&W Communications SQL Injection

Title: J&W Communications Cms SQL Injection Vulnerability + Date: 2014-07-29 + Author: Hekt0r + Vendor Homepage: www.jw-com.com + Tested on: Windows7 & Kali Linux + Vulnerable Files: /rosters.php /team.php /scoresheet.php + Dork : intext:"designed by J&W Communications" inurl:/team.php.php?id=...

CVE-2012-5291

CVE-2012-5291 is a SQL injection vulnerability in the Posse Softball Director CMS, specifically in the file team.php. The underlying issue allows remote attackers to manipulate the idteam parameter to execute arbitrary SQL commands. This has public exploit code and references (e.g., Exploit-DB en...

Posse Softball Director CMS SQL Injection

.-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-=--=-=--=-. Posse Softball Director CMS Blind SQL Injection Vulnerability team.php .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-=--=-=--=-. + Autor: easy laster + Vulnerabilities Blind SQL Injection + Page:...

Posse Softball Director CMS (team.php) Blind SQL Injection Vulnerability

Exploit for php platform in category web applications .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-=--=-=--=-. Posse Softball Director CMS Blind SQL Injection Vulnerability team.php .-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-=--=-=--=-. + Autor: easy...

CVE-2011-0512

PHP-Fusion's Teams Structure Module (version 3.0) contains a SQL injection in team.php via the team_id parameter. This vulnerability allows remote attackers to execute arbitrary SQL commands. The CVE entry (CVE-2011-0512) is supported by multiple sources (NVD/OpenVAS) with a base CVSS v2 score of...

PHP-Fusion Teams Structure Infusion Addon - SQL Injection

PHP-Fusion Teams Structure Infusion Addon - SQL Injection Exploit Title: PHP-fusion Team Structure Infusion All versions SQL injection Date: 16-1-2010 Author: Saif El-Sherei Software Link: http://www.php-fusion.co.uk/infusions/addondb/view.php?addonid=120 Version: PHP-fusion 7.01..03, TeamStructu...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in phpFFL 1.24 allow remote attackers to execute arbitrary PHP code via a URL in the PHPFFLFILEROOT parameter to 1 admin.php, 2 custompages.php, 3 draft.php, 4 faq.php, 5 leagues.php, 6 livedraft.php, 7 login.php, 8 myteam.php, 9 profile.php, 10...

CVE-2006-7006

CVE-2006-7006 concerns Robin de Graff Somery 0.4.4, where a PHP remote file inclusion through upload/admin/team.php could allow arbitrary PHP execution via a URL in the checkauth parameter. Red Hat/NVD entries reiterate the description but also include a note that CVE disputes this vulnerability ...

CVE-2006-0313

Multiple SQL injection vulnerabilities in PDFdirectory before 1.0 allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors involving 1 util.php, 2 userpref.php, 3 user.php, 4 uploadfrm.php, 5 title.php, 6 team.php, 7 stats.php, 8 page.php, 9 org.php, 10 member.php...