38 matches found
EUVD-2023-34029
Malicious code in bioql PyPI...
EUVD-2023-34031
Malicious code in bioql PyPI...
EUVD-2023-12979
Malicious code in bioql PyPI...
EUVD-2023-12509
Malicious code in bioql PyPI...
CVE-2023-0455
Unrestricted Upload of File with Dangerous Type in GitHub repository unilogies/bumsys prior to v1.0.3-beta...
CVE-2023-0995
Cross-site Scripting XSS - Stored in GitHub repository unilogies/bumsys prior to v2.0.1...
CVE-2023-1362
Improper Restriction of Rendered UI Layers or Frames in GitHub repository unilogies/bumsys prior to v2.0.2...
CVE-2023-2554
External Control of File Name or Path in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2552
Cross-Site Request Forgery CSRF in GitHub repository unilogies/bumsys prior to 2.1.1...
CVE-2023-2553
Cross-site Scripting XSS - Stored in GitHub repository unilogies/bumsys prior to 2.2.0...
Unilogies Bumsys v1.0.3 beta - Unrestricted File Upload Vulnerability
Exploit Title: - unilogies/bumsys v1.0.3-beta - Unrestricted File Upload Exploit Author: AFFAN AHMED Vendor Homepage: https://github.com/unilogies/bumsys Software Link: https://github.com/unilogies/bumsys/archive/refs/tags/v1.0.3-beta.zip Version: 1.0.3-beta Tested on: Windows 11, XAMPP-8.2.0 CVE...
unilogies/bumsys v1.0.3 beta - Unrestricted File Upload
Exploit Title: - unilogies/bumsys v1.0.3-beta - Unrestricted File Upload Google Dork : NA Date: 19-01-2023 Exploit Author: AFFAN AHMED Vendor Homepage: https://github.com/unilogies/bumsys Software Link: https://github.com/unilogies/bumsys/archive/refs/tags/v1.0.3-beta.zip Version: 1.0.3-beta Test...
Sql injection
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832 SQL Injection in unilogies/bumsys
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832 SQL Injection in unilogies/bumsys
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
PT-2023-21647 · Unilogies · Bumsys
Name of the Vulnerable Software and Affected Versions: unilogies/bumsys versions prior to 2.2.0 Description: The issue is related to SQL Injection in the GitHub repository unilogies/bumsys. Recommendations: For versions prior to 2.2.0, update to version 2.2.0 or later to resolve the issue...
CVE-2023-2553
Cross-site Scripting XSS - Stored in GitHub repository unilogies/bumsys prior to 2.2.0...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in GitHub repository unilogies/bumsys prior to 2.1.1...
Remote file inclusion
PHP Remote File Inclusion in GitHub repository unilogies/bumsys prior to 2.1.1...
PT-2023-20140 · Unilogies · Bumsys
Name of the Vulnerable Software and Affected Versions: unilogies/bumsys versions prior to 2.2.0 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application receives input from a user and stores it, allowing an attacker to inject malicious scripts. This...