Aggregator

9 months 1 week ago

A vulnerability classified as critical has been found in Oracle Fujitsu M10-1, Fujitsu M10-4, Fujitsu M10-4S, Fujitsu M12-1, Fujitsu M12-2 and Fujitsu M12-2S. This affects an unknown part of the component OpenSSL. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2018-0739. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2017-18113 | Atlassian JIRA Server/Data Center up to 8.18.0 DefaultOSWorkflowConfigurator code injection

9 months 1 week ago

A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.18.0. It has been classified as critical. Affected is the function DefaultOSWorkflowConfigurator. The manipulation leads to code injection. This vulnerability is traded as CVE-2017-18113. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2021-24444 | Create and Manage Taxonomies Plugin up to 3.7.0.1 on WordPress unfiltered_html cross site scripting (EDB-50442)

9 months 1 week ago

A vulnerability, which was classified as problematic, was found in Create and Manage Taxonomies Plugin up to 3.7.0.1 on WordPress. Affected is the function unfiltered_html. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2021-24444. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2021-25791 | SourceCodester Doctor Appointment System 1.0 Update Profile cross site scripting (Exploit 49396 / EDB-49396)

9 months 1 week ago

A vulnerability has been found in SourceCodester Doctor Appointment System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Update Profile. The manipulation leads to cross site scripting. This vulnerability was named CVE-2021-25791. The attack can be initiated remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2015-2100 | WebGate eDVR Manager/Control Center TCPDiscover/TCPDiscover2 stack-based overflow (ID 123487)

9 months 1 week ago

A vulnerability was found in WebGate eDVR Manager and Control Center and classified as critical. Affected by this issue is the function TCPDiscover/TCPDiscover2. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2015-2100. The attack may be launched remotely. There is no exploit available.

vuldb.com

CVE-2016-1585 | AppArmor Mount 7pk security (Nessus ID 235109)

9 months 1 week ago

A vulnerability classified as very critical was found in AppArmor. This vulnerability affects unknown code of the component Mount Handler. The manipulation leads to 7pk security features. This vulnerability was named CVE-2016-1585. The attack can be initiated remotely. There is no exploit available.

vuldb.com

CVE-2025-4250 | code-projects Nero Social Networking Site 1.0 /index.php sql injection

9 months 1 week ago

A vulnerability was found in code-projects Nero Social Networking Site 1.0. It has been classified as critical. This affects an unknown part of the file /index.php. The manipulation of the argument fname/lname/login/password2/cpassword/address/cnumber/email/gender/propic/month leads to sql injection. This vulnerability is uniquely identified as CVE-2025-4250. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2025-4249 | PHPGurukul e-Diary Management System 1.0 /manage-categories.php ID sql injection

9 months 1 week ago

A vulnerability was found in PHPGurukul e-Diary Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /manage-categories.php. The manipulation of the argument ID leads to sql injection. This vulnerability is handled as CVE-2025-4249. The attack may be launched remotely. Furthermore, there is an exploit available.

vuldb.com

Submit #562906: code-projects Nero Social Networking Site In PHP v1.0 SQL Injection [Accepted]

9 months 1 week ago

Submit #562906 / VDB-307347

zzzxby

Rhysida

Dark Feed IO

9 months 1 week ago

cohenido

CVE-2025-4248 | SourceCodester Simple To-Do List System 1.0 /complete_task.php ID sql injection

9 months 1 week ago

A vulnerability has been found in SourceCodester Simple To-Do List System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /complete_task.php. The manipulation of the argument ID leads to sql injection. This vulnerability is known as CVE-2025-4248. The attack can be launched remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2025-4247 | SourceCodester Simple To-Do List System 1.0 /delete_task.php ID sql injection

9 months 1 week ago

A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /delete_task.php. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2025-4247. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

vuldb.com

Submit #562836: PHPGurukul e-Diary Management System v1.0 SQL Injection [Accepted]

9 months 1 week ago

Submit #562836 / VDB-307346

MichaelChong

Submit #562710: SourceCodester Web-based Pharmacy Product Management System 1.0 SQL Injection [Duplicate]

9 months 1 week ago

Submit #562710 / VDB-304985

zonesec

Submit #562700: SourceCodester Simple To-Do List System 1.0 SQL Injection [Accepted]

9 months 1 week ago

Submit #562700 / VDB-307345

zonesec

Submit #562699: SourceCodester Simple To-Do List System 1.0 SQL Injection [Accepted]