PT-2023-10135 · Unknown · Bottle-Auth

Name of the Vulnerable Software and Affected Versions: john5223 bottle-auth affected versions not specified Description: A critical issue was found in john5223 bottle-auth, affecting an unknown function, which leads to sql injection. Recommendations: To fix this issue, it is recommended to apply ...

GHSA-8PH8-9Q2J-C3RQ nodebatis SQL Injection vulnerability

A vulnerability was found in PeterMu nodebatis up to 2.1.x. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. Upgrading to version 2.2.0 can address this issue. The name of the patch is 6629ff5b7e3d62ad8319007a54589ec1f62c7c35. It is...

CVE-2018-25066

A vulnerability was found in PeterMu nodebatis up to 2.1.x. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. Upgrading to version 2.2.0 is able to address this issue. The patch is identified as 6629ff5b7e3d62ad8319007a54589ec1f62c7c35. ...

CVE-2018-25066 PeterMu nodebatis sql injection

A vulnerability was found in PeterMu nodebatis up to 2.1.x. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. Upgrading to version 2.2.0 is able to address this issue. The patch is identified as 6629ff5b7e3d62ad8319007a54589ec1f62c7c35. ...

PT-2023-9997 · Unknown · Sheilazpy Eshop

Name of the Vulnerable Software and Affected Versions: sheilazpy eShop affected versions not specified Description: A critical issue has been found, leading to sql injection through the manipulation of an unknown function. The estimated number of potentially affected devices worldwide is not...

OpenACS bug-tracker 跨站请求伪造漏洞

bug-tracker is an OpenACS open source bug tracker. OpenACS bug-tracker suffers from a cross-site request forgery vulnerability that stems from a problem with an unknown function in the file lib/nav-bar.adp that can lead to cross-site request forgery...

CVE-2018-25057 simple_php_link_shortener index.php sql injection

A vulnerability was found in simplephplinkshortener. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument $link"id" leads to sql injection. The name of the patch is b26ac6480761635ed94ccb0222ba6b732de6e53f. It is recommended t...

Praat Script Collection 安全漏洞

Praat Script Collection is a collection of Praat scripts by Will Styler, an individual developer. A security vulnerability exists in Praat Script Collection that stems from an issue with an unknown function in the filesegmenter.praat file in the component Slash Handler, which can lead to a denial...

PT-2022-11694 · Unknown · Styler Praat Scripts

Name of the Vulnerable Software and Affected Versions: styler praat scripts affected versions not specified Description: A vulnerability was found in styler praat scripts, classified as problematic. It affects an unknown function of the file file segmenter.praat of the component Slash Handler,...

pyambic-pentameter 跨站请求伪造漏洞

pyambic-pentameter is a web application for generating poetry from plain text by the individual developer Kathryn Lingel. A security vulnerability exists in pyambic-pentameter that stems from its unknown function that allows an attacker to implement cross-site request forgery...

FurqanSoftware/node-whois vulnerable to Prototype Pollution

A vulnerability classified as critical has been found in Furqan node-whois. Affected is an unknown function of the file index.coffee. The manipulation leads to improperly controlled modification of object prototype attributes 'prototype pollution'. It is possible to launch the attack remotely. Th...

Node WHOIS 安全漏洞

Node WHOIS is an open source WHOIS client for Node.js by Furqan Software. Node WHOIS has a security vulnerability that stems from a problem with an unknown function in the file index.coffee, which can lead to improperly controlled modifications of object prototype properties, resulting in prototy...

CVE-2022-4401

A vulnerability was found in pallidlight online-course-selection-system. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-215268...

coder-chain_gdut 跨站脚本漏洞

coder-chaingdut is a binary image segmentation method based on lossless compression by the individual developer Wenyin Liu csliuwy. A security vulnerability exists in coder-chaingdut, which originates from an unknown function in file /back/index.php/user/User/?1, which is manipulated to cause...

Movie Ticket Booking System 安全漏洞

Movie Ticket Booking System is a movie ticket booking system by the individual developer Aman sharma. Movie Ticket Booking System has a security vulnerability that stems from a problem with an unknown function in the file booking.php, where manipulation of the parameter id can lead to cross-site...

Movie Ticket Booking System 安全漏洞

Movie Ticket Booking System is a movie ticket booking system by Aman sharma individual developer. Movie Ticket Booking System has a security vulnerability that stems from a problem with an unknown function in the file editBooking.php, which could lead to cross-site scripting...

Webmin 跨站脚本漏洞

Webmin is a set of Web-based system administration tools for Unix-like operating systems from the Webmin community. Webmin suffers from a cross-site scripting vulnerability that originates in an unknown function of xterm/index.cgi that could lead to cross-site scripting issues...

PT-2022-24174 · Unknown · Eolinker Apinto-Dashboard

Name of the Vulnerable Software and Affected Versions: eolinker apinto-dashboard affected versions not specified Description: A problematic issue has been found, affecting an unknown function of the file /login. The manipulation of the callback argument leads to cross-site scripting. It is possib...

Simple Cold Storage Management System 安全漏洞

Simple Cold Storage Management System is a Simple Cold Storage Management System by Carlo Montero Personal Developer. A security vulnerability exists in Simple Cold Storage Management System version 1.0, which stems from an unknown function in the file /csms/?page=contactus that is affected and...

Fast Food Ordering System SQL注入漏洞

Fast Food Ordering System is a fast food ordering system by the individual developer Carlo Montero. Fast Food Ordering System suffers from an SQL injection vulnerability that originates from an unknown function in its component ffos/admin/reports/index.php that operates on the parameter date, whi...