Aggregator

CVE-2025-0196 | code-projects Point of Sales and Inventory Management System 1.0 /user/plist.php cat sql injection(link is external)

VulDB Recent Entries
2 months 4 weeks ago
A vulnerability classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file /user/plist.php. The manipulation of the argument cat leads to sql injection. This vulnerability is uniquely identified as CVE-2025-0196. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-0195 | code-projects Point of Sales and Inventory Management System 1.0 /user/del_product.php id sql injection(link is external)

VulDB Recent Entries
2 months 4 weeks ago
A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/del_product.php. The manipulation of the argument id leads to sql injection. This vulnerability is handled as CVE-2025-0195. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

ASUS Critical Vulnerabilities Let Attackers Execute Arbitrary Commands(link is external)

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
2 months 4 weeks ago

In a recent security advisory, ASUS has alerted users to critical vulnerabilities affecting several of its router models.  These flaws, tracked as CVE-2024-12912 and CVE-2024-13062, pose severe risks by allowing attackers to execute arbitrary commands on compromised devices. ASUS has advised users to act immediately by updating their routers to stay protected. About the Vulnerabilities The two vulnerabilities […]

The post ASUS Critical Vulnerabilities Let Attackers Execute Arbitrary Commands appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

CVE-2024-12237 | Photo Gallery Slideshow & Masonry Tiled Gallery Plugin server-side request forgery(link is external)

VulDB Recent Entries
2 months 4 weeks ago
A vulnerability was found in Photo Gallery Slideshow & Masonry Tiled Gallery Plugin up to 1.0.15 on WordPress. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to server-side request forgery. This vulnerability is known as CVE-2024-12237. The attack can be launched remotely. There is no exploit available.
vuldb.com

Managed ad