Aggregator

Submit #605953 / VDB-315047

Submit #605952 / VDB-315046

A vulnerability was found in Campcodes Payroll Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /ajax.php?action=save_payroll. The manipulation of the argument ID leads to sql injection. This vulnerability is handled as CVE-2025-7132. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Campcodes Payroll Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=save_employee_attendance. The manipulation of the argument employee_id leads to sql injection. This vulnerability is known as CVE-2025-7131. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Campcodes Payroll Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /ajax.php?action=delete_payroll. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2025-7130. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Campcodes Payroll Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=delete_employee_attendance_single. The manipulation of the argument ID leads to sql injection. The identification of this vulnerability is CVE-2025-7129. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Campcodes Payroll Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=calculate_payroll. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2025-7128. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #605947 / VDB-315045

本文对土豆家族中几个关键的提权漏洞进行了学习与分析，学习之后思路更加清晰，许多原本模糊的概念也变得明朗起来。

Submit #605950 / VDB-315044

Submit #605949 / VDB-315043

Submit #605948 / VDB-315042

Submit #605946 / VDB-315041

Submit #605945 / VDB-315040

A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System up to 1.0. This affects an unknown part of the file /admin/changepassword.php. The manipulation of the argument currentpassword leads to sql injection. This vulnerability is uniquely identified as CVE-2025-7127. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in itsourcecode Employee Management System up to 1.0. Affected by this issue is some unknown functionality of the file /admin/adminprofile.php. The manipulation of the argument AdminName leads to sql injection. This vulnerability is handled as CVE-2025-7126. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in itsourcecode Employee Management System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/editempeducation.php. The manipulation of the argument coursepg leads to sql injection. This vulnerability is known as CVE-2025-7125. The attack can be launched remotely. Furthermore, there is an exploit available.

罗马仕宣布自2025年7月7日起停工停产半年，仅保留部分员工处理问题移动电源的召回事宜。员工将按当地最低工资标准的80%获得生活费。消费者需将问题移动电源寄至广东江门，但多数快递拒收。罗马仕未提供销毁并退款选项，导致用户退货退款困难。

Археологи откопали в Китае самые древние орудия труда.

Submit #605935 / VDB-315039