WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin <= 3.2.9 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'eh_crm_ticket_single_view_client' vulnerability

Authenticated Subscriber+ Insecure Direct Object Reference via 'ehcrmticketsingleviewclient' vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin ELEX WordPress HelpDesk & Customer Ticketing System versions = 3.2.9...

PT-2025-47727

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.2.9 via the 'eh crm ticket single view client' due to missing validation on a user controlled key. This makes it possible for...

EUVD-2017-14053

Malware in sbrugna...

EUVD-2017-14065

Malware in sbrugna...

EUVD-2017-14025

Malware in sbrugna...

EUVD-2017-14027

Malware in sbrugna...

EUVD-2017-14052

Malware in sbrugna...

EUVD-2017-14026

Malware in sbrugna...

EUVD-2017-14054

Malware in sbrugna...

EUVD-2017-14030

Malware in sbrugna...

EUVD-2017-14035

Malware in sbrugna...

CVE-2023-1290

A vulnerability, which was classified as critical, has been found in SourceCodester Sales Tracker Management System 1.0. Affected by this issue is some unknown functionality of the file admin/clients/viewclient.php. The manipulation of the argument id leads to sql injection. The attack may be...

CVE-2025-29017

A Remote Code Execution RCE vulnerability exists in Code Astro Internet Banking System 2.0.0 due to improper file upload validation in the profilepic parameter within pagesviewclient.php...

CVE-2023-5699

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...

PT-2023-32272 · Codeastro · Codeastro Internet Banking System

Name of the Vulnerable Software and Affected Versions: CodeAstro Internet Banking System version 1.0 Description: A problematic issue has been found in the CodeAstro Internet Banking System, affecting the processing of the file pages view client.php. The manipulation of the acc name argument with...

Sales Tracker Management System SQL注入漏洞

Sales Tracker Management System is a sales tracker management system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in SourceCodester Sales Tracker Management System version 1.0, which stems from some security issues in a function in the file admin/clients/viewclient.ph...

Online Diagnostic Lab Management System SQL Injection Vulnerability

Online Diagnostic Lab Management System is an online diagnostic lab management system. v1.0 of Online Diagnostic Lab Management System has a security vulnerability that originates from a SQL injection via the /clients/viewclient.php in the id parameter in /clients/viewclient.php contains SQL...

CVE-2022-43163

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /clients/viewclient.php...

CVE-2022-43163

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /clients/viewclient.php...

Online Diagnostic Lab Management System SQL注入漏洞

Online Diagnostic Lab Management System is an online diagnostic lab management system. v1.0 of Online Diagnostic Lab Management System has a security vulnerability that originates from a SQL injection via the /clients/viewclient.php in the id parameter in /clients/viewclient.php contains SQL...