Aggregator

CVE-2025-11119 | itsourcecode Hostel Management System 1.0 POST Request /justines/index.php from cross site scripting (EUVD-2025-31474)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability classified as problematic has been found in itsourcecode Hostel Management System 1.0. Impacted is an unknown function of the file /justines/index.php of the component POST Request Handler. Performing manipulation of the argument from results in cross site scripting. This vulnerability is cataloged as CVE-2025-11119. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-11118 | CodeAstro Student Grading System 1.0 /adminLogin.php staffId sql injection (EUVD-2025-31475)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability described as critical has been identified in CodeAstro Student Grading System 1.0. This issue affects some unknown processing of the file /adminLogin.php. Such manipulation of the argument staffId leads to sql injection. This vulnerability is listed as CVE-2025-11118. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com

CVE-2025-11117 | Tenda CH22 1.0.0.1 /goform/GstDhcpSetSer formWrlExtraGet dips buffer overflow (EUVD-2025-31473)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability marked as critical has been reported in Tenda CH22 1.0.0.1. This vulnerability affects the function formWrlExtraGet of the file /goform/GstDhcpSetSer. This manipulation of the argument dips causes buffer overflow. This vulnerability is tracked as CVE-2025-11117. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com

CVE-2025-11116 | code-projects Simple Scheduling System 1.0 /add.home.php faculty sql injection (EUVD-2025-31471)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability labeled as critical has been found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /add.home.php. The manipulation of the argument faculty results in sql injection. This vulnerability is identified as CVE-2025-11116. The attack can be executed remotely. Additionally, an exploit exists. Other parameters might be affected as well.
vuldb.com

CVE-2025-11115 | code-projects Simple Scheduling System 1.0 /addtime.php starttime/endtime sql injection (EUVD-2025-31472)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability identified as critical has been detected in code-projects Simple Scheduling System 1.0. Affected by this issue is some unknown functionality of the file /addtime.php. The manipulation of the argument starttime/endtime leads to sql injection. This vulnerability is referenced as CVE-2025-11115. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com

CVE-2025-11114 | CodeAstro Online Leave Application 1.0 /leaveAplicationForm.php absence[] sql injection (EUVD-2025-31470)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability categorized as critical has been discovered in CodeAstro Online Leave Application 1.0. Affected by this vulnerability is an unknown functionality of the file /leaveAplicationForm.php. Executing manipulation of the argument absence[] can lead to sql injection. The identification of this vulnerability is CVE-2025-11114. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-11113 | CodeAstro Online Leave Application 1.0 /signup.php city sql injection (EUVD-2025-31469)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability was found in CodeAstro Online Leave Application 1.0. It has been rated as critical. Affected is an unknown function of the file /signup.php. Performing manipulation of the argument city results in sql injection. This vulnerability was named CVE-2025-11113. The attack may be initiated remotely. In addition, an exploit is available. Other parameters might be affected as well.
vuldb.com

Managed ad