21 matches found
CVE-2026-48163
Disclaimer: This data contains information about vulnerable...
EUVD-2017-8733
Malware in sbrugna...
PT-2025-38283
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: The NVIDIA Triton Inference Server is susceptible to a denial-of-service condition triggered by loading a misconfigured model. Exploitation of this issue could lead t...
CVE-2025-9690
A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...
CVE-2025-9690
A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...
CVE-2025-9690
A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...
CVE-2025-9690
CVE-2025-9690 concerns SourceCodester Advanced School Management System 1.0. The vulnerability is a SQL injection in the file /index.php/stock/vendordetails where manipulating the ID parameter enables remote exploitation. Multiple sources confirm the issue and indicate an exploitable condition wi...
CVE-2025-9690 SourceCodester Advanced School Management System vendordetails sql injection
A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...
CVE-2025-9690 SourceCodester Advanced School Management System vendordetails sql injection
A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...
PT-2025-35360
Name of the Vulnerable Software and Affected Versions: SourceCodester Advanced School Management System version 1.0 Description: A flaw exists in SourceCodester Advanced School Management System 1.0 that allows for SQL injection. The issue is located in the file /index.php/stock/vendordetails,...
CVE-2024-28038
The web interface of the affected devices processes a cookie value improperly, leading to a stack buffer overflow. More precisely, giving too long character string to MFPSESSIONID parameter results in a stack buffer overflow. As for the details of affected product names, model numbers, and...
CVE-2024-11677
A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...
CVE-2024-11677 CodeAstro Hospital Management System Add Vendor Details Page his_admin_add_vendor.php cross site scripting
A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...
CVE-2024-11677 CodeAstro Hospital Management System Add Vendor Details Page his_admin_add_vendor.php cross site scripting
A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...
FS Groupon Clone SQL Injection Vulnerability
FS Groupon Clone is a set of PHP and MySQL based online transaction website scripts. The script supports a wide range of online transactions such as event bookings, travel bookings, merchandise purchases and community services. A SQL injection vulnerability exists in FS Groupon Clone version 1.0....
CVE-2017-17575
FS Groupon Clone 1.0 has SQL Injection via the itemdetails.php id parameter or the vendordetails.php id parameter...
CVE-2017-17575
FS Groupon Clone 1.0 is affected by a SQL Injection vulnerability in the item_details.php?id parameter and the vendor_details.php?id parameter. The condition is tied to a PHP‑MySQL stack, enabling potentially unauthorized data access through crafted input. Exploit references exist (Exploit-DB: 43...
Family Connections CMS 2.5.0 & 2.7.1 - (less.php) Remote Command Execution
No description provided by source. ?php / Family connections CMS v2.5.0-v2.7.1 remote command execution exploit vendor: https://www.familycms.com/ software link: https://www.familycms.com/download.php author: mrme::rwx kru email: steventhomasseeley!gmail!com ----------------------------------...
Unrestricted file upload
Unrestricted file upload vulnerability in upload.php in PhotoPost vBGallery 2.4.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension followed by a safe extension, then accessing it via a direct request to the file in a certain path. NOTE:...
Code injection
Unspecified vulnerability in the Address and Routing Parameter Area ARPA transport functionality in HP-UX B.11.00 allows local users to cause a denial of service via unknown vectors. NOTE: due to lack of vendor details, it is not clear whether this is the same as CVE-2007-0916...