13 matches found
EUVD-2025-1930
Malicious code in bioql PyPI...
EUVD-2025-1931
Malicious code in bioql PyPI...
CVE-2025-0929
SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to retrieve, update and delete all database information by injecting a malicious SQL statement via the ‘abs’ parameter in ‘/teamcal/src/index.php’...
CVE-2025-0930
Reflected Cross-Site Scripting XSS in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’...
CVE-2025-0930 Reflected Cross-Site Scripting (XSS) vulnerability in TeamCal Neo
Reflected Cross-Site Scripting XSS in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’...
CVE-2025-0930
CVE-2025-0930: Reflected XSS in TeamCal Neo 3.8.2 via the abs parameter in /teamcal/src/index.php. An attacker can inject JavaScript code through this parameter. No exploit details are provided, and public patches are not confirmed in the supplied sources. PT Security notes that for TeamCal Neo 3...
CVE-2025-0930 Reflected Cross-Site Scripting (XSS) vulnerability in TeamCal Neo
Reflected Cross-Site Scripting XSS in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’...
CVE-2025-0929 SQL injection vulnerability in TeamCal Neo
SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to retrieve, update and delete all database information by injecting a malicious SQL statement via the ‘abs’ parameter in ‘/teamcal/src/index.php’...
CVE-2025-0929
CVE-2025-0929 is a SQL injection in TeamCal Neo 3.8.2. An attacker can retrieve, update, and delete all database information by injecting a malicious SQL statement via the abs parameter in /teamcal/src/index.php. The NVD entry lists CVSS 3.1 base score 9.8 (CRITICAL) with network access required,...
CVE-2025-0929 SQL injection vulnerability in TeamCal Neo
SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to retrieve, update and delete all database information by injecting a malicious SQL statement via the ‘abs’ parameter in ‘/teamcal/src/index.php’...
TeamCal Neo 跨站脚本漏洞
TeamCal Neo is a calendar-based web application from the individual developer George Lewe. A cross-site scripting vulnerability exists in TeamCal Neo version 3.8.2. An attacker can exploit this vulnerability to execute malicious JavaScript code by injecting code via the abs parameter in...
PT-2025-4101 · Unknown · Teamcal Neo
Name of the Vulnerable Software and Affected Versions: TeamCal Neo version 3.8.2 Description: The issue is a Reflected Cross-Site Scripting XSS that allows an attacker to execute malicious JavaScript code. This is achieved by injecting code via the abs parameter in the "/teamcal/src/index.php" AP...
TeamCal Neo SQL注入漏洞
TeamCal Neo is a calendar-based web application by George Lewe Personal Developer. A SQL injection vulnerability exists in TeamCal Neo version 3.8.2. An attacker can use this vulnerability to inject malicious SQL statements via the "abs" parameter in "/teamcal/src/index.php" to retrieve, update,...