242 matches found
EUVD-2018-9148
Malware in sbrugna...
EUVD-2022-48682
Malicious code in bioql PyPI...
EUVD-2024-38136
Malicious code in bioql PyPI...
EUVD-2022-48675
Malicious code in bioql PyPI...
EUVD-2022-35078
Malicious code in bioql PyPI...
CVE-2024-5239
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /view/timetableupdateform.php. The manipulation of the argument grade leads to sql injection. The attack can be initiated...
CVE-2024-5237
A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/timetablegradewise.php. The manipulation of the argument grade leads to sql injection. The attack...
CVE-2024-5238
A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/timetableinsertform.php. The manipulation of the argument grade leads to sql injection. It is possible to initiate the attack...
CVE-2024-10447
A vulnerability classified as critical was found in Project Worlds Online Time Table Generator 1.0. Affected by this vulnerability is an unknown functionality of the file /timetable/staff/staffdashboard.php?info=updateprofile. The manipulation of the argument n leads to sql injection. The attack...
CVE-2022-45828
Cross-Site Request Forgery CSRF vulnerability in NooTheme Noo Timetable plugin = 2.1.3 versions...
CVE-2022-2844
A vulnerability classified as problematic has been found in MotoPress Timetable and Event Schedule up to 1.4.06. This affects an unknown part of the file /wp/?cpmvcid=1doaction=mvparse=datafeed=1index=1=adddetails=2 of the component Calendar Handler. The manipulation of the argument...
CVE-2022-2843
A vulnerability was found in MotoPress Timetable and Event Schedule. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /wp-admin/admin-ajax.php of the component Quick Edit. The manipulation of the argument posttitle with the input leads to cross si...
CVE-2022-45821
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in NooTheme Noo Timetable plugin = 2.1.3 versions...
CVE-2021-24583
The Timetable and Event Schedule WordPress plugin before 2.4.2 does not have proper access control when deleting a timeslot, allowing any user with the editposts capability contributor+ to delete arbitrary timeslot from any events. Furthermore, no CSRF check is in place as well, allowing such...
CVE-2021-24585
The Timetable and Event Schedule WordPress plugin before 2.4.0 outputs the Hashed Password, Username and Email Address along other less sensitive data of the user related to the Even Head of the Timeslot in the response when requesting the event Timeslot data with a user with the editposts...
CVE-2025-45007
A Reflected Cross-Site Scripting XSS vulnerability was discovered in the profile.php file of PHPGurukul Timetable Generator System v1.0. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the adminname POST request parameter...
CVE-2025-45007
A Reflected Cross-Site Scripting XSS vulnerability was discovered in the profile.php file of PHPGurukul Timetable Generator System v1.0. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the adminname POST request parameter...
CVE-2025-45007
A Reflected Cross-Site Scripting XSS vulnerability was discovered in the profile.php file of PHPGurukul Timetable Generator System v1.0. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the adminname POST request parameter...
PHPGurukul Timetable Generator System 安全漏洞
PHPGurukul Timetable Generator System is a timetable generator system from PHPGurukul. A security vulnerability exists in PHPGurukul Timetable Generator System v1.0, which stems from improper handling of the adminname parameter in the profile.php file, which could lead to a reflective cross-site...
CVE-2025-45007
CVE-2025-45007 affects PHPGurukul Timetable Generator System v1.0, via the profile.php file. The vulnerability is a reflected Cross-Site Scripting (XSS) where the adminname parameter in a POST request can cause arbitrary JavaScript execution. Impact is consistent with a reflected XSS allowing scr...