148 matches found
CVE-2025-11605 code-projects Client Details System update-profile.php sql injection
A vulnerability was identified in code-projects Client Details System 1.0. Impacted is an unknown function of the file /admin/update-profile.php. Such manipulation of the argument uid leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used...
CVE-2025-11605 code-projects Client Details System update-profile.php sql injection
A vulnerability was identified in code-projects Client Details System 1.0. Impacted is an unknown function of the file /admin/update-profile.php. Such manipulation of the argument uid leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used...
CVE-2025-11605
The CVE-2025-11605 entry concerns code-projects Client Details System 1.0. The vulnerability is in the file /admin/update-profile.php, where manipulation of the uid parameter leads to an SQL injection. It is exploitable remotely, and the exploit is publicly available. Affected component: /admin/u...
PT-2025-41691
Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in code-projects Client Details System version 1.0 that allows for remote code execution. The issue is located in the file /admin/update-profile.php and involves...
Code-Projects Client Details System SQL注入漏洞
Client Details System is a client information system. Client Details System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter uid in the file /admin/update-profile.php. An attacker can exploit this...
EUVD-2019-18977
Malware in sbrugna...
EUVD-2006-7070
Malware in sbrugna...
EUVD-2022-46099
Malicious code in bioql PyPI...
EUVD-2025-29836
Malicious code in bioql PyPI...
EUVD-2025-28883
Malicious code in bioql PyPI...
EUVD-2022-50805
Malicious code in bioql PyPI...
EUVD-2025-28404
Malicious code in bioql PyPI...
CVE-2025-40992
Stored XSS vulnerability in Creativeitem Sociopro due to lack of proper validation of user inputs via the endpoint '/sociopro/profile/updateprofile', affecting to 'name' parameter via POST. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and...
CVE-2025-40992 Stored XSS in Creativeitem Sociopro
Stored XSS vulnerability in Creativeitem Sociopro due to lack of proper validation of user inputs via the endpoint '/sociopro/profile/updateprofile', affecting to 'name' parameter via POST. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and...
CVE-2025-40992
CVE-2025-40992 is a Stored XSS vulnerability in Creativeitem Sociopro, affecting the /sociopro/profile/update_profile endpoint where the POSTed name parameter is insufficiently validated. Attackers could inject script that may be executed in an authenticated user’s context, with potential cookie/...
CVE-2025-10625
A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /user/dashboard.php?page=updateprofile. The manipulation of the argument phone results in sql injection. The attack may be launched remotely. The...
CVE-2025-10625
A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /user/dashboard.php?page=updateprofile. The manipulation of the argument phone results in sql injection. The attack may be launched remotely. The...
CVE-2025-10625
A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /user/dashboard.php?page=updateprofile. The manipulation of the argument phone results in sql injection. The attack may be launched remotely. The...
CVE-2025-10625 SourceCodester Online Exam Form Submission dashboard.php sql injection
A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /user/dashboard.php?page=updateprofile. The manipulation of the argument phone results in sql injection. The attack may be launched remotely. The...
CVE-2025-10625 SourceCodester Online Exam Form Submission dashboard.php sql injection
A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /user/dashboard.php?page=updateprofile. The manipulation of the argument phone results in sql injection. The attack may be launched remotely. The...