Aggregator

A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /productsadd.php. The manipulation of the argument id leads to sql injection. This vulnerability is uniquely identified as CVE-2024-10752. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The initial researcher advisory mentions contradicting file names to be affected.

vuldb.com

CVE-2024-10751 | Codezips ISP Management System 1.0 pay.php customer sql injection

VulDB Recent Entries

1 week 5 days ago

A vulnerability was found in Codezips ISP Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file pay.php. The manipulation of the argument customer leads to sql injection. This vulnerability is handled as CVE-2024-10751. The attack may be launched remotely. Furthermore, there is an exploit available.

vuldb.com

Молчание следствия: как одна банковская карта ведет к политическому шпионажу

Securitylab.ru

1 week 5 days ago

Следователи нашли зацепку в деле, но допрашивать подозреваемого не стали.

Submit #436327: Codezips Hospital Appointment System In PHP With Source Code V1.0 SQL Injection [Duplicate]

Vuldb Submit

1 week 5 days ago

Submit #436327 / VDB-282009

3127434

Submit #436316: Codezips Pet Shop Management System In PHP With Source Code V1.0 SQL Injection [Accepted]

Vuldb Submit

1 week 5 days ago

Submit #436316 / VDB-282921

0xchen

Submit #436296: Codezips ISP Management System In PHP With Source Code V1.0 SQL Injection [Accepted]

Vuldb Submit

1 week 5 days ago

Submit #436296 / VDB-282920

Cuit_jiang

CVE-2005-4291 | ECTOOLS Onlineshop up to 1.0 cart.cgi cross site scripting (EDB-26849 / BID-15891)

Vuldb Updates

1 week 5 days ago

A vulnerability classified as problematic was found in ECTOOLS Onlineshop up to 1.0. Affected by this vulnerability is an unknown functionality of the file cart.cgi. The manipulation leads to basic cross site scripting. This vulnerability is known as CVE-2005-4291. The attack can be launched remotely. Furthermore, there is an exploit available.

vuldb.com

Qualitor 8.24 Server-Side Request Forgery

不安全

1 week 5 days ago

# CVE-2024-48360 | Qualitor <= v8.24 Unauthenticated SSRF## DescriptionQualitor is a platform fo

Xlibre Xnest 24.1.0 / 24.2.0 Buffer Overflow

不安全

1 week 5 days ago

XLibre project security advisory---------------------------------As Xlibre Xnest is based on Xorg

SmartAgent 1.1.0 Remote Code Execution

不安全

1 week 5 days ago

# Exploit Title: SmartAgent v1.1.0 - Unauthenticated Remote Code Execution# Date: 01-10-2024# Expl

SmartAgent 1.1.0 Server-Side Request Forgery

不安全

1 week 5 days ago

# Exploit Title: SmartAgent v1.1.0 - Server-Side Request Forgery (SSRF)# Date: 01-10-2024# Exploit

SmartAgent 1.1.0 SQL Injection

不安全

1 week 5 days ago

SmartAgent 1.1.0 SQL Injection# Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection (

CVE-2024-10750 | Tenda i22 1.0.0.3(4687) SysToo websReadEvent Content-Length null pointer dereference

VulDB Recent Entries

1 week 5 days ago

A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo. The manipulation of the argument Content-Length leads to null pointer dereference. This vulnerability is known as CVE-2024-10750. The attack can be launched remotely. Furthermore, there is an exploit available.

vuldb.com

Submit #435407: Tenda i22 V1.0.0.3(4687) NULL Pointer Dereference [Accepted]

Vuldb Submit

1 week 5 days ago

Submit #435407 / VDB-282919

xiaobor123

Submit #435261: TOTOLINK LR350 V9.3.5u.6369 Authentication Bypass Issues [Duplicate]

Vuldb Submit

1 week 5 days ago

Submit #435261 / VDB-282667

c0nyy

Aggregator

Managed ad