28 matches found
EUVD-2025-6660
Malicious code in bioql PyPI...
EUVD-2025-6659
Malicious code in bioql PyPI...
CVE-2025-2354
A vulnerability has been found in VAM Virtual Airlines Manager 2.6.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /vam/index.php. The manipulation of the argument registryid/planeicao/hubid leads to cross site scripting. The attack can be...
CVE-2025-2353
A vulnerability, which was classified as critical, was found in VAM Virtual Airlines Manager up to 2.6.2. Affected is an unknown function of the file /vam/index.php of the component HTTP GET Parameter Handler. The manipulation of the argument ID/registryid/planeicao leads to sql injection. It is...
CVE-2025-2354
A vulnerability has been found in VAM Virtual Airlines Manager 2.6.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /vam/index.php. The manipulation of the argument registryid/planeicao/hubid leads to cross site scripting. The attack can be...
CVE-2025-2353
A vulnerability, which was classified as critical, was found in VAM Virtual Airlines Manager up to 2.6.2. Affected is an unknown function of the file /vam/index.php of the component HTTP GET Parameter Handler. The manipulation of the argument ID/registryid/planeicao leads to sql injection. It is...
CVE-2025-2354 VAM Virtual Airlines Manager index.php cross site scripting
A vulnerability has been found in VAM Virtual Airlines Manager 2.6.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /vam/index.php. The manipulation of the argument registryid/planeicao/hubid leads to cross site scripting. The attack can be...
CVE-2025-2354 VAM Virtual Airlines Manager index.php cross site scripting
A vulnerability has been found in VAM Virtual Airlines Manager 2.6.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /vam/index.php. The manipulation of the argument registryid/planeicao/hubid leads to cross site scripting. The attack can be...
CVE-2025-2354
CVE-2025-2354 affects VAM Virtual Airlines Manager 2.6.2. The vulnerability is a cross-site scripting flaw in an unknown function of the file /vam/index.php, triggered by manipulating the parameters registry_id, plane_icao, or hub_id. It can be exploited remotely and the exploit has been disclose...
Virtual Airlines Manager 代码注入漏洞
Virtual Airlines Manager VAM is an open source web-based system for managing virtual airlines from Virtual Airlines Manager, Inc. It supports different ACARS and flight trackers to manage virtual airlines. A code injection vulnerability exists in Virtual Airlines Manager version 2.6.2, which...
CVE-2025-2353 VAM Virtual Airlines Manager HTTP GET Parameter index.php sql injection
A vulnerability, which was classified as critical, was found in VAM Virtual Airlines Manager up to 2.6.2. Affected is an unknown function of the file /vam/index.php of the component HTTP GET Parameter Handler. The manipulation of the argument ID/registryid/planeicao leads to sql injection. It is...
CVE-2025-2353 VAM Virtual Airlines Manager HTTP GET Parameter index.php sql injection
A vulnerability, which was classified as critical, was found in VAM Virtual Airlines Manager up to 2.6.2. Affected is an unknown function of the file /vam/index.php of the component HTTP GET Parameter Handler. The manipulation of the argument ID/registryid/planeicao leads to sql injection. It is...
CVE-2025-2353
CVE-2025-2353 affects VAM Virtual Airlines Manager (up to 2.6.2). The root cause is SQL injection in an HTTP GET parameter handler in the /vam/index.php file, via the arguments ID/registry_id/plane_icao. This permits remote exploitation and can lead to unauthorized database access or manipulation...
Virtual Airlines Manager 安全漏洞
Virtual Airlines Manager VAM is an open source web-based system for managing virtual airlines from Virtual Airlines Manager, Inc. Supporting different ACARS and flight trackers, it can manage virtual airlines. A security vulnerability exists in Virtual Airlines Manager version 2.6.2 and earlier,...
Virtual Airlines Manager 2.6.2 - (multiple) SQL Injection Vulnerability
Exploit Title: Virtual Airlines Manager 2.6.2 - 'multiple' SQL Injection Google Dork: Powered by Virtual Airlines Manager v2.6.2 Exploit Author: Milad Karimi Vendor Homepage: http://virtualairlinesmanager.net Software Link: https://virtualairlinesmanager.net/index.php/vam-releases/ Version: 2.6.2...
Virtual Airlines Manager 2.6.2 - 'multiple' SQL Injection
Exploit Title: Virtual Airlines Manager 2.6.2 - 'multiple' SQL Injection Google Dork: Powered by Virtual Airlines Manager v2.6.2 Date: 2021-12-30 Exploit Author: Milad Karimi Vendor Homepage: http://virtualairlinesmanager.net Software Link: https://virtualairlinesmanager.net/index.php/vam-release...
Virtual Airline Manager 2.6.2 SQL Injection
Exploit Title: Virtual Airlines Manager 2.6.2 - 'multiple' SQL Injection Google Dork: Powered by Virtual Airlines Manager v2.6.2 Date: 2021-12-30 Exploit Author: Milad Karimi Vendor Homepage: http://virtualairlinesmanager.net Software Link: https://virtualairlinesmanager.net/index.php/vam-release...
Virtual Airlines Manager 2.6.2 Cross Site Scripting
Exploit Title: Virtual Airlines Manager 2.6.2 - Persistent Cross-Site Scripting Google Dork: inurl:"/vam/indexvamop.php" Date: 2020-06-29 Exploit Author: Peter Blue Vendor Homepage: https://virtualairlinesmanager.net Software Link: https://virtualairlinesmanager.net Version: 2.6.2 Tested on: Linu...
Virtual Airlines Manager 2.6.2 - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Virtual Airlines Manager 2.6.2 - Persistent Cross-Site Scripting Google Dork: inurl:"/vam/indexvamop.php" Exploit Author: Peter Blue Vendor Homepage: https://virtualairlinesmanager.net Software Link:...
Virtual Airlines Manager 2.6.2 - Persistent Cross-Site Scripting
Exploit Title: Virtual Airlines Manager 2.6.2 - Persistent Cross-Site Scripting Google Dork: inurl:"/vam/indexvamop.php" Date: 2020-06-29 Exploit Author: Peter Blue Vendor Homepage: https://virtualairlinesmanager.net Software Link: https://virtualairlinesmanager.net Version: 2.6.2 Tested on: Linu...