CVE-2026-6587 vibrantlabsai RAGAS Collections util.py _try_process_url server-side request forgery

A security flaw has been discovered in vibrantlabsai RAGAS up to 0.4.3. The affected element is the function tryprocesslocalfile/tryprocessurl of the file src/ragas/metrics/collections/multimodalfaithfulness/util.py of the component Collections Module. Performing a manipulation of the argument...

PT-2025-49821

An XSS vulnerability in port util.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

EUVD-2025-198257

A weakness has been identified in jameschz Hush Framework 2.0. The impacted element is an unknown function of the file Hush\hush-lib\hush\Util.php of the component HTTP Host Header Handler. This manipulation of the argument $SERVER'HOST' causes improper neutralization of http headers for scriptin...

EUVD-2025-25773

Malicious code in bioql PyPI...

CVE-2025-9472

A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /ownerutility/addownerutility.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public...

CVE-2025-9472

A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /ownerutility/addownerutility.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public...

CVE-2025-9472 itsourcecode Apartment Management System add_owner_utility.php sql injection

A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /ownerutility/addownerutility.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public...

CVE-2025-9472 itsourcecode Apartment Management System add_owner_utility.php sql injection

A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /ownerutility/addownerutility.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public...

CVE-2025-9472

CVE-2025-9472 affects itsourcecode Apartment Management System 1.0. A SQL injection flaw exists in /owner_utility/add_owner_utility.php where the ID parameter is manipulated, allowing remote exploitation. Public exploits exist per multiple sources, indicating potential real-world abuse. Connected...

itsourcecode Apartment Management System 安全漏洞

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /ownerutility/addownerutility.php. An attacker can exploit...

UBUNTU-CVE-2024-24198

smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c...