CVE-2023-6474 PHPGurukul Nipah Virus Testing Management System manage-phlebotomist.php cross-site request forgery

A vulnerability has been found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file manage-phlebotomist.php. The manipulation of the argument pid leads to cross-site request forgery. The attack can be initiated...

CVE-2023-6474

CVE-2023-6474 affects PHPGurukul Nipah Virus Testing Management System 1.0, specifically the manage-phlebotomist.php file. The issue is a cross-site request forgery (CSRF) caused by manipulation of the pid parameter in that script. The vulnerability can be triggered remotely, and public disclosur...

CVE-2023-6465 PHPGurukul Nipah Virus Testing Management System registered-user-testing.php cross site scripting

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been classified as problematic. This affects an unknown part of the file registered-user-testing.php. The manipulation of the argument regmobilenumber leads to cross site scripting. It is possible to initiat...

CVE-2023-6465

CVE-2023-6465 affects PHPGurukul Nipah Virus Testing Management System v1.0, specifically the file registered-user-testing.php where the regmobilenumber argument is vulnerable. The root cause is a cross-site scripting flaw that can be exploited remotely; multiple sources note that the exploit has...

Nipah Virus Testing Management System Cross-Site Scripting Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site scripting vulnerability exists in version 1.0 of the PHPGurukul Nipah Virus Testing Management System, which stems from the parameter regmobilenumber in the file Registered-user-testing.php that causes...

PT-2023-32678 · Unknown · Phpgurukul Nipah Virus Testing Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A vulnerability was found in the PHPGurukul Nipah Virus Testing Management System, affecting an unknown part of the file registered-user-testing.php. The manipulation o...

CVE-2023-46746

CVE-2023-46746 concerns PostHog (self-hosted) where a server-side request forgery (SSRF) vulnerability could be exploited by authenticated users. The root cause is that PostHog did not verify whether a URL is local when enabling webhooks, allowing an authenticated user to forge a POST request. Th...

CVE-2023-6442

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add-phlebotomist.php. The manipulation of the argument empid/fullname leads to cross site scripting. The...

CVE-2023-6442 PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php cross site scripting

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add-phlebotomist.php. The manipulation of the argument empid/fullname leads to cross site scripting. The...

CVE-2023-6442

CVE-2023-6442 affects PHPGurukul Nipah Virus Testing Management System 1.0, specifically the add-phlebotomist.php functionality. The root cause is manipulation of the empid/fullname parameter, which leads to cross-site scripting. Attacks can be launched remotely, and public exploits exist. The vu...

Sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-6402 PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-6402 PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file add-phlebotomist.php. The manipulation of the argument empid leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-6402

CVE-2023-6402 affects PHPGurukul Nipah Virus Testing Management System v1.0. The vulnerability lies in add-phlebotomist.php, where unsafely manipulating the empid parameter enables SQL injection. Exploitation is possible remotely and has been disclosed publicly. Multiple connected sources confirm...

Nipah Virus Testing Management System Cross-Site Scripting Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site scripting vulnerability exists in version 1.0 of the Nipah Virus Testing Management System, which stems from a misuse of the parameter empid/fullname that can lead to cross-site scripting...

Nipah Virus Testing Management System Security Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A security vulnerability exists in version 1.0 of the PHPGurukul Nipah Virus Testing Management System, which stems from an incorrect manipulation of the parameter empid that can lead to sql injection...

PT-2023-32669 · Unknown · Phpgurukul Nipah Virus Testing Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A vulnerability was found in the PHPGurukul Nipah Virus Testing Management System, affecting an unknown functionality of the file add-phlebotomist.php. The manipulation...

The vulnerability of Flarum’s forum software, related to insufficient validation of incoming requests, allows a violator to carry out an SSRF attack.

The vulnerability of Flarum’s forum software is related to insufficient testing of incoming requests. Exploiting this vulnerability allows a remote attacker to execute an SSRF attack...

The vulnerability of the Python programming language implementation in the IBM AIX operating system allows a perpetrator to trigger a service failure.

The vulnerability of the Python programming language implementation in the IBM AIX operating system exists due to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

CSZ CMS 1.3.0 Remote Command Execution

Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution Date: 17/11/2023 Exploit Author: tmrswrr Vendor Homepage: https://www.cszcms.com/ Software Link: https://www.cszcms.com/link/3https://sourceforge.net/projects/cszcms/files/latest/download Version: Version 1.3.0 Tested on:...