Submit #602641: code-projects Inventory Management System V1.0 SQL injection [Accepted]
Submit #602641 / VDB-314260
Aggregator
Submit #602640: code-projects Inventory Management System V1.0 SQL injection [Accepted]
9 months 1 week ago
Submit #602640 / VDB-314259
Dav1d
Submit #602617: code-projects Inventory Management System V1.0 SQL injection [Accepted]
9 months 1 week ago
Submit #602617 / VDB-314258
AlbaDove
Submit #602609: code-projects Inventory Management System V1.0 SQL injection [Accepted]
9 months 1 week ago
Submit #602609 / VDB-314257
AlbaDove
CVE-2025-6818 | HDF5 1.14.6 /src/H5Ochunk.c H5O__chunk_protect heap-based overflow (Issue 5573)
9 months 1 week ago
A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5O__chunk_protect of the file /src/H5Ochunk.c. The manipulation leads to heap-based buffer overflow.
This vulnerability is traded as CVE-2025-6818. An attack has to be approached locally. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6817 | HDF5 1.14.6 /src/H5Centry.c H5C__load_entry resource consumption (Issue 5572)
9 months 1 week ago
A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation leads to resource consumption.
The identification of this vulnerability is CVE-2025-6817. The attack needs to be approached locally. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6816 | HDF5 1.14.6 /src/H5Ofsinfo.c H5O__fsinfo_encode heap-based overflow (Issue 5571)
9 months 1 week ago
A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5O__fsinfo_encode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow.
This vulnerability was named CVE-2025-6816. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6252 | qodeinteractive Qi Addons for Elementor Plugin up to 1.9.1 on WordPress several cross site scripting
9 months 1 week ago
A vulnerability classified as problematic has been found in qodeinteractive Qi Addons for Elementor Plugin up to 1.9.1 on WordPress. This affects an unknown part. The manipulation of the argument several leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-6252. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
Submit #602326: HDFGroup HDF5 hdf5 1.14.6 (commit 17c16b6) Heap-based Buffer Overflow [Accepted]
9 months 1 week ago
Submit #602326 / VDB-314256
JJLeo
Submit #602294: HDFGroup HDF5 hdf5 1.14.6 (commit 17c16b6) Uncontrolled Memory Allocation [Accepted]
9 months 1 week ago
Submit #602294 / VDB-314255
JJLeo
Submit #602291: HDFGroup HDF5 hdf5 1.14.6 (commit 17c16b6) Heap-based Buffer Overflow [Accepted]
9 months 1 week ago
Submit #602291 / VDB-314254
JJLeo
CVE-2024-12364 | Mavi Yeşil Guest Tracking Software sql injection
9 months 1 week ago
A vulnerability was found in Mavi Yeşil Guest Tracking Software. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to sql injection.
This vulnerability is handled as CVE-2024-12364. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-11739 | Case Informatics Case ERP up to 2.0.0 sql injection
9 months 1 week ago
A vulnerability was found in Case Informatics Case ERP up to 2.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.
This vulnerability is known as CVE-2024-11739. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-50370 | PHPGurukul Medical Card Generation System 1.0 /admin/readenq.php cross-site request forgery
9 months 1 week ago
A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/readenq.php. The manipulation leads to cross-site request forgery.
This vulnerability is traded as CVE-2025-50370. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-50369 | PHPGurukul Medical Card Generation System 1.0 manage-card.php cross-site request forgery
9 months 1 week ago
A vulnerability was found in PHPGurukul Medical Card Generation System 1.0 and classified as problematic. This issue affects some unknown processing of the file /mcgs/admin/manage-card.php. The manipulation leads to cross-site request forgery.
The identification of this vulnerability is CVE-2025-50369. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-50367 | PHPGurukul Medical Card Generation System 1.0 mcgs/contact.php Name cross site scripting
9 months 1 week ago
A vulnerability has been found in PHPGurukul Medical Card Generation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file mcgs/contact.php. The manipulation of the argument Name leads to cross site scripting.
This vulnerability was named CVE-2025-50367. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-53257 | Serhii Pasyuk Gmedia Photo Gallery Plugin up to 1.23.0 on WordPress filename control (EUVD-2025-19395)
9 months 1 week ago
A vulnerability was found in Serhii Pasyuk Gmedia Photo Gallery Plugin up to 1.23.0 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to improper control of filename for include/require statement in php program ('php remote file inclusion').
This vulnerability is traded as CVE-2025-53257. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-53253 | Josh WP Edit Plugin up to 4.0.4 on WordPress cross site scripting (EUVD-2025-19391)
9 months 1 week ago
A vulnerability was found in Josh WP Edit Plugin up to 4.0.4 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2025-53253. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-53269 | imw3 My Wp Brand Plugin up to 1.1.3 on WordPress cross-site request forgery (EUVD-2025-19397)
9 months 1 week ago
A vulnerability was found in imw3 My Wp Brand Plugin up to 1.1.3 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery.
This vulnerability is known as CVE-2025-53269. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2025-53206 | HT Plugins HT Mega Plugin up to 1.0.8 on WordPress cross site scripting (EUVD-2025-19389)
9 months 1 week ago
A vulnerability, which was classified as problematic, was found in HT Plugins HT Mega Plugin up to 1.0.8 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-53206. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com