Aggregator

Submit #624073 / VDB-318284

A vulnerability has been found in code-projects Vehicle Management 1.0 and classified as critical. This vulnerability affects unknown code of the file /edit1.php. The manipulation of the argument sno leads to sql injection. This vulnerability was named CVE-2025-8330. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in code-projects Vehicle Management 1.0. This affects an unknown part of the file /filter3.php. The manipulation of the argument company leads to sql injection. This vulnerability is uniquely identified as CVE-2025-8329. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

使用飞书打造个人投资系统，包含文档结构及飞书常见的功能介绍

A vulnerability, which was classified as critical, has been found in code-projects Exam Form Submission 1.0. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument USN leads to sql injection. This vulnerability is handled as CVE-2025-8328. The attack may be launched remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A vulnerability classified as critical was found in code-projects Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/delete_s8.php. The manipulation of the argument ID leads to sql injection. This vulnerability is known as CVE-2025-8327. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in code-projects Exam Form Submission 1.0. Affected is an unknown function of the file /admin/delete_s7.php. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2025-8326. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #624004 / VDB-318283

Submit #624003 / VDB-318282

Submit #624002 / VDB-318281

Submit #623861 / VDB-318280

Submit #623860 / VDB-318279

Submit #623731 / VDB-318278

Submit #623721 / VDB-318277

Submit #623703 / VDB-318276

A vulnerability was found in Invision Community up to 4.7.20/5.0.7. It has been rated as problematic. This issue affects some unknown processing of the file oauth/callback/index.php. The manipulation of the argument state leads to cross site scripting. The identification of this vulnerability is CVE-2025-48933. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

1.Qilin勒索团伙公布了新的受害公司 2.Play团伙公布新的受害公司 3.DEVMAN勒索团伙入侵泰国劳动部

当前网络环境出现异常，需完成验证后方可继续访问。

本网站使用技术性Cookie确保基本功能运行，并通过分析性Cookie收集数据以优化网站结构和内容。此外， profiling cookies 用于追踪用户行为和兴趣，提供个性化广告。用户可访问Cookie Center管理偏好设置。

根据国家信息安全漏洞库（CNNVD）统计，本周（2025年7月21日至2025年7月27日）安全漏洞情况如下