Employee Leaves Management System 安全漏洞

Employee Leaves Management System ELMS is an internal employee management system for individual developers. A security vulnerability exists in PHPGurukul Employee Leaves Management System version 1.0, which is caused by an unknown function in the file changepassword.php, with a weak password in t...

wordcraft 跨站脚本漏洞

wordcraft is an application by the individual developer of capnsquarepants. A cross-site scripting vulnerability exists in wordcraft, which stems from an unknown function in tag.php that could lead to cross-site scripting...

CVE-2013-10014 oktora24 2moons sql injection

A vulnerability classified as critical has been found in oktora24 2moons. Affected is an unknown function. The manipulation leads to sql injection. The patch is identified as 1b09cf7672eb85b5b0c8a4de321f7a4ad87b09a7. It is recommended to apply a patch to fix this issue. VDB-218898 is the identifi...

2moons SQL注入漏洞

2moons is an application by oktora24 Individual Developer. 2moons has a SQL injection vulnerability that stems from a vulnerability found in oktora24 2moons that is categorized as critical. An unknown function is affected. The operation results in sql injection...

PT-2023-10003 · Unknown · Oktora24 2Moons

Name of the Vulnerable Software and Affected Versions: oktora24 2moons affected versions not specified Description: A critical vulnerability has been found in oktora24 2moons, affecting an unknown function. The manipulation leads to sql injection. Recommendations: At the moment, there is no...

Sql injection

A vulnerability was found in ollpu parontalli. It has been classified as critical. Affected is an unknown function of the file httpdocs/index.php. The manipulation of the argument s leads to sql injection. The patch is identified as 6891bb2dec57dca6daabc15a6d2808c8896620e5. It is recommended to...

saemorris TheRadSystem 跨站脚本漏洞

TheRadSystem is a Cmput 391 project by saemorris Individual Developer. A cross-site scripting vulnerability exists in saemorris TheRadSystem, which stems from a problem with an unknown function in the file users.php, which can be exploited by an attacker to manipulate the parameter q to cause...

PT-2023-16181 · Unknown · Theradsystem

Name of the Vulnerable Software and Affected Versions: saemorris TheRadSystem affected versions not specified Description: A problematic issue has been identified, affecting an unknown function of the file users.php. The manipulation of the q argument leads to cross-site scripting. This issue can...

PT-2023-10135 · Unknown · Bottle-Auth

Name of the Vulnerable Software and Affected Versions: john5223 bottle-auth affected versions not specified Description: A critical issue was found in john5223 bottle-auth, affecting an unknown function, which leads to sql injection. Recommendations: To fix this issue, it is recommended to apply ...

GHSA-8PH8-9Q2J-C3RQ nodebatis SQL Injection vulnerability

A vulnerability was found in PeterMu nodebatis up to 2.1.x. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. Upgrading to version 2.2.0 can address this issue. The name of the patch is 6629ff5b7e3d62ad8319007a54589ec1f62c7c35. It is...

CVE-2018-25066

A vulnerability was found in PeterMu nodebatis up to 2.1.x. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. Upgrading to version 2.2.0 is able to address this issue. The patch is identified as 6629ff5b7e3d62ad8319007a54589ec1f62c7c35. ...

CVE-2018-25066 PeterMu nodebatis sql injection

A vulnerability was found in PeterMu nodebatis up to 2.1.x. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. Upgrading to version 2.2.0 is able to address this issue. The patch is identified as 6629ff5b7e3d62ad8319007a54589ec1f62c7c35. ...

PT-2023-9997 · Unknown · Sheilazpy Eshop

Name of the Vulnerable Software and Affected Versions: sheilazpy eShop affected versions not specified Description: A critical issue has been found, leading to sql injection through the manipulation of an unknown function. The estimated number of potentially affected devices worldwide is not...

OpenACS bug-tracker 跨站请求伪造漏洞

bug-tracker is an OpenACS open source bug tracker. OpenACS bug-tracker suffers from a cross-site request forgery vulnerability that stems from a problem with an unknown function in the file lib/nav-bar.adp that can lead to cross-site request forgery...

CVE-2018-25057 simple_php_link_shortener index.php sql injection

A vulnerability was found in simplephplinkshortener. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument $link"id" leads to sql injection. The name of the patch is b26ac6480761635ed94ccb0222ba6b732de6e53f. It is recommended t...

Praat Script Collection 安全漏洞

Praat Script Collection is a collection of Praat scripts by Will Styler, an individual developer. A security vulnerability exists in Praat Script Collection that stems from an issue with an unknown function in the filesegmenter.praat file in the component Slash Handler, which can lead to a denial...

PT-2022-11694 · Unknown · Styler Praat Scripts

Name of the Vulnerable Software and Affected Versions: styler praat scripts affected versions not specified Description: A vulnerability was found in styler praat scripts, classified as problematic. It affects an unknown function of the file file segmenter.praat of the component Slash Handler,...

pyambic-pentameter 跨站请求伪造漏洞

pyambic-pentameter is a web application for generating poetry from plain text by the individual developer Kathryn Lingel. A security vulnerability exists in pyambic-pentameter that stems from its unknown function that allows an attacker to implement cross-site request forgery...

FurqanSoftware/node-whois vulnerable to Prototype Pollution

A vulnerability classified as critical has been found in Furqan node-whois. Affected is an unknown function of the file index.coffee. The manipulation leads to improperly controlled modification of object prototype attributes 'prototype pollution'. It is possible to launch the attack remotely. Th...

Node WHOIS 安全漏洞

Node WHOIS is an open source WHOIS client for Node.js by Furqan Software. Node WHOIS has a security vulnerability that stems from a problem with an unknown function in the file index.coffee, which can lead to improperly controlled modifications of object prototype properties, resulting in prototy...