Aggregator
雷神众测漏洞周报2024.1.20-2024.2.9
1 year 5 months ago
雷神众测拥有该文章的修改和解释权。如欲转载或传播此文章,必须保证此文章的副本,包括版权声明等全部内容。声明雷神众测允许,不得任意修改或增减此文章内容,不得以任何方式将其用于商业目的。
5悔向未来|五家SRC联合众测限时启动!
1 year 5 months ago
雷神众测漏洞周报2024.1.20-2024.2.9
1 year 5 months ago
雷神众测拥有该文章的修改和解释权。如欲转载或传播此文章,必须保证此文章的副本,包括版权声明等全部内容。声明雷神众测允许,不得任意修改或增减此文章内容,不得以任何方式将其用于商业目的。
5悔向未来|五家SRC联合众测限时启动!
1 year 5 months ago
雷神众测漏洞周报2024.1.20-2024.2.9
1 year 5 months ago
雷神众测拥有该文章的修改和解释权。如欲转载或传播此文章,必须保证此文章的副本,包括版权声明等全部内容。声明雷神众测允许,不得任意修改或增减此文章内容,不得以任何方式将其用于商业目的。
5悔向未来|五家SRC联合众测限时启动!
1 year 5 months ago
雷神众测漏洞周报2024.1.20-2024.2.9
1 year 5 months ago
雷神众测拥有该文章的修改和解释权。如欲转载或传播此文章,必须保证此文章的副本,包括版权声明等全部内容。声明雷神众测允许,不得任意修改或增减此文章内容,不得以任何方式将其用于商业目的。
CVE-2025-1174 | 1000 Projects Bookstore Management System 1.0 Add Book Page process_book_add.php Book Name cross site scripting
1 year 5 months ago
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file process_book_add.php of the component Add Book Page. The manipulation of the argument Book Name leads to cross site scripting.
This vulnerability was named CVE-2025-1174. The attack can be initiated remotely. Furthermore, there is an exploit available.
Other parameters might be affected as well.
vuldb.com
CVE-2025-1173 | 1000 Projects Bookstore Management System 1.0 process_users_del.php id sql injection
1 year 5 months ago
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file process_users_del.php. The manipulation of the argument id leads to sql injection.
This vulnerability is uniquely identified as CVE-2025-1173. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-1172 | 1000 Projects Bookstore Management System 1.0 addtocart.php bcid sql injection
1 year 5 months ago
A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file addtocart.php. The manipulation of the argument bcid leads to sql injection.
This vulnerability is handled as CVE-2025-1172. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-1171 | code-projects Real Estate Property Management System 1.0 CustomerReport.php Address cross site scripting
1 year 5 months ago
A vulnerability classified as problematic was found in code-projects Real Estate Property Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin/CustomerReport.php. The manipulation of the argument Address leads to cross site scripting.
This vulnerability is known as CVE-2025-1171. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-1170 | code-projects Real Estate Property Management System 1.0 /Admin/Category.php Desc cross site scripting
1 year 5 months ago
A vulnerability classified as problematic has been found in code-projects Real Estate Property Management System 1.0. Affected is an unknown function of the file /Admin/Category.php. The manipulation of the argument Desc leads to cross site scripting.
This vulnerability is traded as CVE-2025-1170. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #495318: 1000 Projects Bookstore Management System 1.0 Cross Site Scripting [Accepted]
1 year 5 months ago
Submit #495318 / VDB-295078
Neo-O
Submit #495309: 1000 Projects Bookstore Management System 1.0 SQL Injection [Accepted]
1 year 5 months ago
Submit #495309 / VDB-295077
Neo-O
Submit #495183: 1000 Projects Bookstore Management System 1.0 SQL Injection [Accepted]
1 year 5 months ago
Submit #495183 / VDB-295076
Neo-O
FreeBuf早报 | AI语音诈骗分子冒充意大利国防部长;SolarWinds被收购
1 year 5 months ago
诈骗分子伪装成意大利国防部长克罗塞托(Guido Crosetto)及其团队成员,试图说服意大利一些顶级企业家向海外汇款。
Submit #494830: code-projects Real Estate Property Management System V1/0 Cross Site Scripting [Accepted]
1 year 5 months ago
Submit #494830 / VDB-295075
j0hn.FFFFF
Submit #494829: code-projects Real Estate Property Management System V1/0 Cross Site Scripting [Accepted]
1 year 5 months ago
Submit #494829 / VDB-295074
j0hn.FFFFF
Катастрофа в один клик: как блокировка фишингового URL «поломала» Cloudflare R2
1 year 5 months ago
Крошечный просчёт мгновенно превратил облачную платформу в пустышку.