Submit #592842: projectworlds Life Insurance Management System v1.0 SQL Injection [Accepted]
Submit #592842 / VDB-312605
Aggregator
CVE-2025-6132 | Chanjet CRM 1.0 departmentsetting.php gblOrgID sql injection (EUVD-2025-18423)
6 months ago
A vulnerability has been found in Chanjet CRM 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysconfig/departmentsetting.php. The manipulation of the argument gblOrgID leads to sql injection.
This vulnerability is known as CVE-2025-6132. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #592841: projectworlds Life Insurance Management System v1.0 SQL Injection [Duplicate]
6 months ago
Submit #592841 / VDB-312604
XU17
Submit #592840: projectworlds Life Insurance Management System v1.0 SQL Injection [Accepted]
6 months ago
Submit #592840 / VDB-312604
XU17
Submit #592839: projectworlds Life Insurance Management System v1.0 SQL Injection [Accepted]
6 months ago
Submit #592839 / VDB-312603
XU17
Submit #592838: projectworlds Life Insurance Management System v1.0 SQL Injection [Accepted]
6 months ago
Submit #592838 / VDB-312602
XU17
CVE-2025-6131 | CodeAstro Food Ordering System 1.0 POST Request Parameter /admin/store/edit/ Restaurant Name/Address cross site scripting
6 months ago
A vulnerability, which was classified as problematic, was found in CodeAstro Food Ordering System 1.0. Affected is an unknown function of the file /admin/store/edit/ of the component POST Request Parameter Handler. The manipulation of the argument Restaurant Name/Address leads to cross site scripting.
This vulnerability is traded as CVE-2025-6131. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #592822: PHPGurukul Hospital Management System 4.0 SQL Injection [Duplicate]
6 months ago
Submit #592822 / VDB-177391
Subhash Paudel
Submit #592813: PHPGurukul Hospital Management System 4.0 SQL Injection [Duplicate]
6 months ago
Submit #592813 / VDB-177397
Subhash Paudel
CVE-2025-6130 | TOTOLINK EX1200T 4.1.2cu.5232_B20210713 HTTP POST Request /boafrm/formStats buffer overflow (EUVD-2025-18422)
6 months ago
A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects some unknown processing of the file /boafrm/formStats of the component HTTP POST Request Handler. The manipulation leads to buffer overflow.
The identification of this vulnerability is CVE-2025-6130. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6129 | TOTOLINK EX1200T 4.1.2cu.5232_B20210713 HTTP POST Request /boafrm/formSaveConfig submit-url buffer overflow (EUVD-2025-18419)
6 months ago
A vulnerability classified as critical was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This vulnerability affects unknown code of the file /boafrm/formSaveConfig of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.
This vulnerability was named CVE-2025-6129. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6128 | TOTOLINK EX1200T 4.1.2cu.5232_B20210713 HTTP POST Request /boafrm/formWirelessTbl submit-url buffer overflow (EUVD-2025-18413)
6 months ago
A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This affects an unknown part of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.
This vulnerability is uniquely identified as CVE-2025-6128. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #592781: 捷畅通 捷畅通CRM V1.0 SQL Injection [Accepted]
6 months ago
Submit #592781 / VDB-312601
Customer
Submit #592780: CodeAstro Food Ordering System in PHP CodeIgniter 18/2021 Cross Site Scripting [Accepted]
6 months ago
Submit #592780 / VDB-312600
Subhash Paudel
CVE-2025-6127 | PHPGurukul Nipah Virus Testing Management System 1.0 /search-report.php serachdata cross site scripting (EUVD-2025-18405)
6 months ago
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /search-report.php. The manipulation of the argument serachdata leads to cross site scripting.
This vulnerability is handled as CVE-2025-6127. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #592746: SourceCodester Online Student Clearance System V1.0 Cross-Site Request Forgery [Duplicate]
6 months ago
Submit #592746 / VDB-309440
alc9700
Submit #592696: TOTOLINK EX1200T V4.1.2cu.5232_B20210713 Buffer Overflow [Accepted]
6 months ago
Submit #592696 / VDB-312599
wang_lun
Submit #592695: TOTOLINK EX1200T V4.1.2cu.5232_B20210713 Buffer Overflow [Accepted]
6 months ago
Submit #592695 / VDB-312598
wang_lun
Submit #592694: TOTOLINK EX1200T V4.1.2cu.5232_B20210713 Buffer Overflow [Accepted]
6 months ago
Submit #592694 / VDB-312597
wang_lun
CVE-2025-6126 | PHPGurukul Rail Pass Management System 1.0 /contact.php Name cross site scripting (EUVD-2025-18404)
6 months ago
A vulnerability was found in PHPGurukul Rail Pass Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /contact.php. The manipulation of the argument Name leads to cross site scripting.
This vulnerability is known as CVE-2025-6126. The attack can be launched remotely. Furthermore, there is an exploit available.
Other parameters might be affected as well.
vuldb.com