Online Shoe Store confirm.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of file /admin/confirm.php. The vulnerability can be exploited by an attacker to...

Online Shoe Store contactus.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /contactus.php. An attacker can exploit this vulnerability to execute...

Online Shoe Store contactus1.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Message in the file /contactus1.php. The vulnerability can be exploited by an attacker t...

Online Shoe Store customer_signup.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /function/customersignup.php. An attacker can exploit this vulnerability...

Online Shoe Store edit_customer.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter firstname in the file /function/editcustomer.php. An attacker can exploit this...

Online DJ Booking Management System Cross-Site Scripting Vulnerability

Online DJ Booking Management System is an online DJ booking management system. Online DJ Booking Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in odms/admin/view-user-queries.php, which can be...

Simple Online Hotel Reservation System edit_query_account.php File SQL Injection Vulnerability

Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Name in the file...

Simple Online Hotel Reservation System edit_room.php File SQL Injection Vulnerability

Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter roomtype in the file...

Simple Online Hotel Reservation System index.php File SQL Injection Vulnerability

Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Username in the file...

Art Gallery Management System changeimage2.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter editid in the file /admin/changeimage2.php. An attacker can...

Emergency Ambulance Hiring Portal bwdates-request-report-details.php File SQL Injection Vulnerability

Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter fromdate/todate in the file...

Emergency Ambulance Hiring Portal add-ambulance.php File SQL Injection Vulnerability

Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ambregnum in the file /admin/add-ambulance.php. An...

Directory Management System search-directory.php File SQL Injection Vulnerability

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchdata in the file /admin/search-directory.php. An attacker can...

Directory Management System manage-directory.php File SQL Injection Vulnerability

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter del in the file /admin/manage-directory.php. An attacker can explo...

Directory Management System admin-profile.php File SQL Injection Vulnerability

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter adminname in the file /admin/admin-profile.php. An attacker can...

Art Gallery Management System forgot-password.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter email in the file /admin/forgot-password.php. An attacker c...

Art Gallery Management System changepropic.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter imageid in the file /admin/changepropic.php. An attacker...

Art Gallery Management System changeimage4.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter editid in the file /admin/changeimage4.php. An attacker can...

Pre-School Enrollment System Project update-teacher-pic.php File Directory Traversal Vulnerability

The Pre-School Enrollment System Project is a preschool enrollment system project. A directory traversal vulnerability exists in Pre-School Enrollment System Project, which stems from a lack of validity checking of paths in the file update-teacher-pic.php when processing directory requests, and c...

Employee Record Management System admin/editempeducation.php File SQL Injection Vulnerability

Employee Record Management System is an employee record management system. Employee Record Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter yopgra in the file /admin/editempeducation.php...

Hostel Management System contact.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter hostelname in the file /contact.php. An attacker can use this vulnerability to...

Hostel Management System empty_rooms.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchbox in the file /emptyrooms.php. An attacker can use this vulnerability to...

Hostel Management System /contact_manager.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter studentrollno in the file /contactmanager.php. An attacker can use this...

Client Details System index.php File SQL Injection Vulnerability

Client Details System is a client information system. Client Details System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Username in file /clientdetails/admin/index.php. An attacker can exploit this...

Hostel Management System allocated_rooms.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchbox in the file /allocatedrooms.php. An attacker can use this vulnerabilit...

Fuji Electric Smart Editor Buffer Overflow Vulnerability

Fuji Electric Smart Editor is an editing software developed by Fuji Electric for configuring and programming Human Machine Interface HMI devices. A buffer overflow vulnerability exists in Fuji Electric Smart Editor, which can be exploited by an attacker to execute arbitrary code...

JetBrains TeamCity Information Disclosure Vulnerability

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. JetBrains TeamCity suffers from an information...

JetBrains TeamCity Performance Monitor Page Cross-Site Scripting Vulnerability

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A cross-site scripting vulnerability exists in...

JetBrains TeamCity favoriteIcon page cross-site scripting vulnerability

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. JetBrains TeamCity suffers from a cross-site...

D-Link DIR-619L formWlSiteSurvey File Buffer Overflow Vulnerability

The D-Link DIR-619L is a wireless router designed for home and small office environments, utilizing the IEEE 802.11n wireless standard with a maximum transmission rate of 300Mbps. The D-Link DIR-619L suffers from a buffer overflow vulnerability, which originates from the failure of the parameter...

D-Link DIR-619L Buffer Overflow Vulnerability

The D-Link DIR-619L is a wireless router designed for home and small office environments, utilizing the IEEE 802.11n wireless standard with a maximum transmission rate of 300Mbps. The D-Link DIR-619L suffers from a buffer overflow vulnerability that stems from the formportforwarding method of fil...

AUO DIR-825 sub_4091AC Function Buffer Overflow Vulnerability

The AUO DIR-825 is a dual-band wireless router from AUO D-Link, mainly for SMB and SOHO environments. The AUO DIR-825 suffers from a buffer overflow vulnerability, which originates from the failure of the sub4091AC function in the HTTP POST Request Handler component to correctly validate the leng...

HDF5 Heap Buffer Overflow Vulnerability

HDF5 is a library of HDF open source . HDF5 has a heap buffer overflow vulnerability , the vulnerability stems from the H5Fint.c file in the H5Faddrdecodelen function fails to correctly validate the length of the input data size , an attacker can use this vulnerability to cause a denial of servic...

TOTOLINK A3002R /boafrm/formWlanMultipleAP file stack buffer overflow vulnerability

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R suffers from a stack buffer overflow vulnerability, which originates from the parameter submit-url in the file /boafrm/formWlanMultipleAP failing to correctly validate the length and size of the input...

Directory Management System searchdata.php File SQL Injection Vulnerability

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchdata in the file /searchdata.php. An attacker can exploit this...

HDF5 H5FSsection.c function buffer overflow vulnerability

HDF5 is a library of HDF open source . HDF5 there is a buffer overflow vulnerability , the vulnerability stems from the file H5FSsection.c function H5FSsectfindnode failed to correctly validate the length of the input data size , an attacker can exploit the vulnerability to cause a denial of...

Autel MaxiCharger AC Wallbox Commercial Authentication Bypass Vulnerability

Autel MaxiCharger AC Wallbox Commercial is a smart AI electric car charger from Autel USA. Autel MaxiCharger AC Wallbox Commercial suffers from an authentication bypass vulnerability that is due to insufficient authentication of the command source. An attacker can exploit the vulnerability to...

NETGEAR EX6150 sub_410090 function buffer overflow vulnerability

The NETGEAR EX6100 is a dual-band wireless extender that is primarily used to enhance the coverage of an existing WiFi network, and is especially suitable for large rooms or scenarios where there are signal blind spots. The NETGEAR EX6100 suffers from a buffer overflow vulnerability, which stems...

D-Link DIR-619L Stack Buffer Overflow Vulnerability

The D-Link DIR-619L is a wireless router from China-based AUO D-Link. The D-Link DIR-619L suffers from a stack buffer overflow vulnerability caused by incorrect boundary checking in function formSetWANWisard51 in file /goform/formSetWANWizard51. An attacker could exploit this vulnerability to cau...

Art Gallery Management System changeimage.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter editid in the file /admin/changeimage.php. An attacker can...

PDF-XChange Editor U3D File Parsing Out-of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. PDF-XChange Editor U3D file parsing has an out-of-bounds read information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

PDF-XChange Editor Information Disclosure Vulnerability (CNVD-2025-16291)

PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. An information disclosure vulnerability exists in PDF-XChange Editor, which is caused by a lack of proper validation of user-supplied data. An attacker could exploit this vulnerabilit...

Online Bidding System bidnow.php File SQL Injection Vulnerability

Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID in the file /bidnow.php. An attacker can exploit this vulnerability to execute...

Emergency Ambulance Hiring Portal index.php File SQL Injection Vulnerability

Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in /index.php. An attacker can exploit this vulnerability to execute...

WordPress Download Attachments plugin Improper Access Control Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. An improper access control vulnerability exists in the WordPress Download Attachments plugin that stems from a user control key leading to an authorization bypass, no details of...

Autel MaxiCharger AC Wallbox Commercial Elevation of Privilege Vulnerability

Autel MaxiCharger AC Wallbox Commercial is a smart AI electric car charger from Autel USA. An elevation of privilege vulnerability exists in Autel MaxiCharger AC Wallbox Commercial, which can be exploited by an attacker to escalate privileges to normally user-protected resources...

JetBrains TeamCity diskUsageBuildsStats Page Cross Site Scripting Vulnerability

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. JetBrains TeamCity suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data on the...

School Fees Payment System branch.php file cross-site scripting vulnerability

School Fees Payment System is a tuition payment system. School Fees Payment System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Branch/Address/Detail in the file /branch.php, which can be...

Pre-School Enrollment System enrollment.php File SQL Injection Vulnerability

Pre-School Enrollment System is a web-based preschool enrollment system. The Pre-School Enrollment System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter fathername in the file /enrollment.php. An attacke...

WordPress Conference Scheduler plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Conference Scheduler plugin, which stems from insufficient input cleanup and output escaping of the className...