itsourcecode Student Transcript Processing System SQL注入漏洞

itsourcecode Student Transcript Processing System is itsourcecode open source a student transcript processing system. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Transcript Processing System, which stems from an incorrect manipulation of the parameter uname in the...

PT-2025-41226

Name of the Vulnerable Software and Affected Versions itsourcecode Student Transcript Processing System version 1.0 Description A weakness exists in itsourcecode Student Transcript Processing System 1.0. The issue involves the potential for SQL injection through manipulation of the uname argument...

EUVD-2025-20519

Malicious code in bioql PyPI...

EUVD-2025-6105

Malicious code in bioql PyPI...

Transcript Franking for Encrypted Messaging

Message franking is an indispensable abuse mitigation tool for end-to-end encrypted E2EE messaging platforms. With it, users who receive harmful content can securely report that content to platform moderators. However, while real-world deployments of reporting require the disclosure of multiple...

CVE-2025-7182

A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/modules/subject/edit.php. The manipulation of the argument pre leads to cross site scripting. The...

CVE-2025-7182

A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/modules/subject/edit.php. The manipulation of the argument pre leads to cross site scripting. The...

CVE-2025-7182

A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/modules/subject/edit.php. The manipulation of the argument pre leads to cross site scripting. The...

CVE-2025-7182

The CVE-2025-7182 entry concerns itsourcecode Student Transcript Processing System 1.0. A vulnerability exists in the /admin/modules/subject/edit.php file where manipulation of the pre parameter enables cross-site scripting. The attack can be launched remotely, and the exploit has been publicly d...

CVE-2025-7182 itsourcecode Student Transcript Processing System edit.php cross site scripting

A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/modules/subject/edit.php. The manipulation of the argument pre leads to cross site scripting. The...

CVE-2025-7182 itsourcecode Student Transcript Processing System edit.php cross site scripting

A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/modules/subject/edit.php. The manipulation of the argument pre leads to cross site scripting. The...

itsourcecode Student Transcript Processing System 代码注入漏洞

itsourcecode Student Transcript Processing System is itsourcecode open source a student transcript processing system . A code injection vulnerability exists in itsourcecode Student Transcript Processing System version 1.0, which originates from improper manipulation of the parameter pre in the fi...

PT-2025-28468 · Itsourcecode · Itsourcecode Student Transcript Processing System

Name of the Vulnerable Software and Affected Versions: itsourcecode Student Transcript Processing System version 1.0 Description: A vulnerability has been found in the itsourcecode Student Transcript Processing System, affecting an unknown functionality of the file /admin/modules/subject/edit.php...

CVE-2025-1383

The Podlove Podcast Publisher plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.2. This is due to missing or incorrect nonce validation on the ajaxtranscriptdelete function. This makes it possible for unauthenticated attackers to delete...

CVE-2025-1383

The Podlove Podcast Publisher plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.2. This is due to missing or incorrect nonce validation on the ajaxtranscriptdelete function. This makes it possible for unauthenticated attackers to delete...

WordPress Podlove Podcast Publisher plugin <= 4.2.2 - Cross-Site Request Forgery via ajax_transcript_delete Function vulnerability

Cross-Site Request Forgery via ajaxtranscriptdelete Function vulnerability discovered by Abbas Mamoun in WordPress Plugin Podlove Podcast Publisher versions = 4.2.2...

XML External Entity (XXE) Injection

Overview youtube-transcript-api is a This is an python API which allows you to get the transcripts/subtitles for a given YouTube video. It also works for automatically generated subtitles, supports translating subtitles and it does not require a headless browser, like other selenium based solutio...

agixt (>=1.4.65 <=1.7.11), atomic-agents (>=0.1.46 <=0.3.3) +24 more potentially affected by unknown CVE via youtube-transcript-api (>=0.1.4 <=0.6.2)

youtube-transcript-api PYPI version =0.1.4, =1.4.65, =0.1.46, =0.1.0, =10.8.3, =1.0.10, =0.1.1, =0.0.1, =0.5.0, =0.1.0, =0.3.4 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-YOUTUBETRANSCRIPTAPI-8446381...

AI Transcript, Fake School Website: Student’s US Scholarship Scam Exposed on Reddit

You reap what you sow!...

transcript-open.de Cross Site Scripting vulnerability OBB-3891053

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...