CVE-2026-34614

Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

CVE-2026-27245 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. An attacker could exploit this vulnerability to inject malicious scripts into a web page, potentially gaining elevated access or control over the victim's account or session...

CVE-2026-34598

The YesWiki advisory (GHSA-37FQ-47QJ-6J5J) documents a Stored and Blind XSS vulnerability in the form title input field. An unauthenticated attacker can inject JavaScript via the form title, which is saved to the backend database and later rendered to other users without proper sanitization. The ...

CVE-2025-13607

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...

EUVD-2025-202452

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...

CVE-2025-13607 D-Link CCTV camera model DCS-F5614-L1 Missing Authentication for Critical Function

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...

CVE-2025-13607 D-Link CCTV camera model DCS-F5614-L1 Missing Authentication for Critical Function

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...

PT-2025-50362

Name of the Vulnerable Software and Affected Versions CCTV affected versions not specified Description A malicious actor can access camera configuration information, including account credentials, without authentication by accessing a vulnerable URL. This flaw potentially risks video feed hijack...

EUVD-2024-47293

Malicious code in bioql PyPI...

EUVD-2022-2448

Malicious code in bioql PyPI...

CVE-2018-16553

In Jspxcms 9.0.0, a vulnerable URL routing implementation allows remote code execution after logging in as web admin...

CVE-2024-43745

Adobe Experience Manager versions 6.5.21 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browse...

Doctor Appointment Management System 1.0 Insecure Settings

==================================================================================================================================== | Title : Doctor Appointment Management System 1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firef...

CVE-2024-45057 Reflected Cross-Site Scripting in i-Educar

i-Educar is free, fully online school management software that can be used by school secretaries, teachers, coordinators, and area managers. A Reflected Cross-Site Scripting XSS vulnerability was identified in the dynamic generation of HTML fields prior to the 2.9 branch. The file located at...

CVE-2024-6149

Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5...

CVE-2024-6149

Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5...

CVE-2024-6149

CVE-2024-6149 affects the Citrix Workspace app for HTML5. According to Citrix CTX678037, versions before 2404.1 are vulnerable to an untrusted URL redirection when the HTML5 session is launched, with the issue described as “Redirection of users to a vulnerable URL.” The vulnerability requires an ...

Citrix Workspace app for HTML5 Security Bulletin CVE-2024-6148 and CVE-2024-6149

Description of Problem Two vulnerabilities have been discovered that impact the Citrix Workspace app for HTML5. Refer to below for further details: Affected Versions The vulnerabilities affect the following supported versions of the Citrix Workspace app for HTML5. Citrix Workspace app for HTML5...

CVE-2024-26114

Adobe Experience Manager versions 6.5.20 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browse...

Human Resource Management System 1.0 - 'employeeid' SQL Injection

Exploit Title: Human Resource Management System - SQL Injection Date: 13-01-2024 Exploit Author: Srikar Exp1o1t9r Vendor Homepage: https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html Software Link:...