PT-2026-45075

Name of the Vulnerable Software and Affected Versions sambitraj STUDENT-MANAGEMENT-SYSTEM version 1.0 Description A remote SQL injection exists within the Login Page component. This occurs when the email argument is manipulated, allowing an attacker to interfere with the database queries...

CVE-2024-50804

creationtimestamp| type| source ---|---|--- 2024-11-18 20:23:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113505821901017710 2024-11-18 23:14:29+00:00| seen| https://t.me/cvedetector/11383...

CVE-2023-40054 SolarWinds Network Configuration Manager Directory Traversal Remote Code Execution Vulnerability

The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33226...

Open redirect

Rejected reason: This candidate is unused by its CNA...

CVE-2023-41040

GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the .git directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the .git...

CVE-2023-41040

GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the .git directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the .git...

CVE-2020-13052

CVE-2020-13052 is rejected/not used per the Initial Description.

Astium VoIP PBX 2.1 build 25399 - Multiple VulnerabilitiesRemote Command Execution

Astium VoIP PBX 2.1 build 25399 - Multiple VulnerabilitiesRemote Command Execution !/usr/bin/python +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Astium VoIP PBX 0x90.nl Software link :...

Unfixed XSS vulnerability at www.studiocataldi.it

Security researcher Scr34M, has submitted on 10/04/2007 a cross-site-scripting XSS vulnerability affecting www.studiocataldi.it, which at the time of submission ranked 72347 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/04/2007. It is...

Unfixed XSS vulnerability at www.madebyfamily.com

Security researcher BackDoor, has submitted on 23/09/2007 a cross-site-scripting XSS vulnerability affecting www.madebyfamily.com, which at the time of submission ranked 8866423 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/09/2007. It is...

Unfixed XSS vulnerability at rd.or.tp

Security researcher kusomiso.com, has submitted on 07/11/2007 a cross-site-scripting XSS vulnerability affecting rd.or.tp, which at the time of submission ranked 21915 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/11/2007. It is currently...

Mandrake Linux Security Advisory : cpio (MDKSA-2005:116-1)

A race condition has been found in cpio 2.6 and earlier which allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete CVE-2005-1111. A vulnerability has...

ZoneAlarm Pro's MailSafe

hi2all MailSafe is a feature on ZoneAlarm Pro http://www.zonelabs.com that identifies in e-mail attachments potentially harmful files ex: .exe, .com, .reg, .vbs or others that can be added in this feature configuration, and renames their extension to .zl; at the same time it can show an alarm box...