67 matches found
CVE-2026-4580
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /checkupdatestatus.php of the component Parameters Handler. The manipulation of the argument serviceId results in sql injection. The attack can be executed remotely. The...
openSUSE Security Advisory (SUSE-SU-2026:0938-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2026-25572
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function RSS Get Update...
Fedora: Security Advisory (FEDORA-2026-60e8919a4a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Improper Resource Shutdown or Release
Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the UpdateStatus cycle of VM controller in virt handler that fetches all the guest interfaces from QEMU guest agent and adds them to interface status of the VMI. An attacker can disrupt...
Improper Resource Shutdown or Release
Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the UpdateStatus cycle of VM controller in virt handler that fetches all the guest interfaces from QEMU guest agent and adds them to interface status of the VMI. An attacker can disrupt...
CVE-2025-7733
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'csupdateapplicationstatuscallback' due to missing validation on a user controlled key. This makes it possible for authenticated...
EUVD-2014-4310
Malware in sbrugna...
EUVD-2022-52883
Malicious code in bioql PyPI...
EUVD-2022-52364
Malicious code in bioql PyPI...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2025-2184)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-0980
A vulnerability was found in SourceCodester Yoga Class Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file admin/registrations/updatestatus.php of the component Status Update Handler. The manipulation of the argument id leads to sql injection...
CVE-2023-2244
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. This affects an unknown part of the file /admin/orders/updatestatus.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to...
CVE-2023-1042
A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /petshop/admin/orders/updatestatus.php. The manipulation of the argument oid with the input 1" leads to cross site scripting. The attack c...
CVE-2022-44348
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/orders/updatestatus.php?id=...
Missing Authorization
Overview Affected versions of this package are vulnerable to Missing Authorization in the indexonUpdateStatus function in Orders.php, which does not check for the permissions of the user before modifying an order. Remediation Upgrade tastyigniter/tastyigniter to version 4.0.0-beta.1 or higher...
TastyIgniter 安全漏洞
TastyIgniter is an online ordering software from TastyIgniter open source. A security vulnerability exists in TastyIgniter version 3.7.6, which stems from improper access control of the indexonUpdateStatus function in the Orders Management System, which could result in an unauthorized user updati...
CVE-2025-24576
creationtimestamp| type| source ---|---|--- 2025-02-03 15:18:21+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhbtnkuk672f 2025-02-03 17:25:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113941121753984228 2025-02-03 17:48:59+00:00| seen|...
CVE-2024-56136
creationtimestamp| type| source ---|---|--- 2025-01-16 19:29:35+00:00| seen| https://infosec.exchange/users/cve/statuses/113839687252021271 2025-01-16 19:56:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2024 2025-01-16 20:16:07+00:00| seen|...
CVE-2025-22329
creationtimestamp| type| source ---|---|--- 2025-01-15 15:24:58+00:00| seen| https://infosec.exchange/users/cve/statuses/113833063056817703 2025-01-15 16:16:05+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfs5zcru4y2b 2025-01-15 16:54:29+00:00| seen|...