Submit #626776: code-projects Online Medicine Guide V1.0 SQL Injection [Accepted]
Submit #626776 / VDB-318596
Aggregator
Submit #626766: Projectworlds Online Admission System V1.0 SQL injection [Accepted]
1 month 3 weeks ago
Submit #626766 / VDB-318595
huangtinlin
Submit #626722: code-projects Intern Membership Management System In Php With Source Code 1 SQL Injection [Accepted]
1 month 3 weeks ago
Submit #626722 / VDB-318594
jiucai
Submit #626721: code-projects Intern Membership Management System In Php With Source Code 1 SQL Injection [Accepted]
1 month 3 weeks ago
Submit #626721 / VDB-318593
jiucai
Submit #626716: code-projects Intern Membership Management System In Php With Source Code 1 SQL Injection [Accepted]
1 month 3 weeks ago
Submit #626716 / VDB-318592
jiucai
CVE-2025-7500 | Ocean Social Sharing Plugin up to 2.2.1 on WordPress cross site scripting (EUVD-2025-23434)
1 month 3 weeks ago
A vulnerability classified as problematic has been found in Ocean Social Sharing Plugin up to 2.2.1 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-7500. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-6078 | Partner Web Application up to 4.32.1 cross site scripting (EUVD-2025-23416)
1 month 3 weeks ago
A vulnerability was found in Partner Web Application up to 4.32.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2025-6078. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-6077 | Partner Web Application up to 4.32.1 weak credentials (EUVD-2025-23417)
1 month 3 weeks ago
A vulnerability was found in Partner Web Application up to 4.32.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to use of weak credentials.
This vulnerability is known as CVE-2025-6077. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-54792 | LocalSend up to 1.17.0 channel accessible (GHSA-424h-5f6m-x63f / EUVD-2025-23410)
1 month 3 weeks ago
A vulnerability was found in LocalSend up to 1.17.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to channel accessible by non-endpoint.
This vulnerability is traded as CVE-2025-54792. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-54796 | 9001 copyparty up to 1.18.8 Recent Uploads Page filter resource consumption (GHSA-5662-2rj7-f2v6 / EUVD-2025-23411)
1 month 3 weeks ago
A vulnerability was found in 9001 copyparty up to 1.18.8 and classified as problematic. This issue affects some unknown processing of the component Recent Uploads Page. The manipulation of the argument filter leads to resource consumption.
The identification of this vulnerability is CVE-2025-54796. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-54790 | humhub cfiles up to 0.16.9 sql injection (GHSA-rfvq-g9rm-pgqj / EUVD-2025-23412)
1 month 3 weeks ago
A vulnerability has been found in humhub cfiles up to 0.16.9 and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection.
This vulnerability was named CVE-2025-54790. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-6076 | Partner Web Application up to 4.32.1 unrestricted upload (EUVD-2025-23418)
1 month 3 weeks ago
A vulnerability, which was classified as critical, was found in Partner Web Application up to 4.32.1. This affects an unknown part. The manipulation leads to unrestricted upload.
This vulnerability is uniquely identified as CVE-2025-6076. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Submit #626297: https://phpgurukul.com/online-security-guards-hiring-system-usin online-security-guards-hiring-system-usin 1.0 SQL Injection [Duplicate]
1 month 3 weeks ago
Submit #626297 / VDB-300674
liule
CVE-2025-54131 | Cursor up to 1.2 command injection (GHSA-534m-3w6r-8pqr / EUVD-2025-23408)
1 month 3 weeks ago
A vulnerability, which was classified as critical, has been found in Cursor up to 1.2. Affected by this issue is some unknown functionality. The manipulation leads to command injection.
This vulnerability is handled as CVE-2025-54131. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-54136 | Cursor up to 1.2.4 os command injection (GHSA-24mc-g4xr-4395 / EUVD-2025-23405)
1 month 3 weeks ago
A vulnerability classified as critical was found in Cursor up to 1.2.4. Affected by this vulnerability is an unknown functionality. The manipulation leads to os command injection.
This vulnerability is known as CVE-2025-54136. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-54789 | humhub cfiles up to 0.6.9 cross site scripting (GHSA-cw2v-c62w-5r43 / EUVD-2025-23404)
1 month 3 weeks ago
A vulnerability classified as problematic has been found in humhub cfiles up to 0.6.9. Affected is an unknown function. The manipulation leads to basic cross site scripting.
This vulnerability is traded as CVE-2025-54789. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Submit #626294: https://phpgurukul.com/human-metapneumovirus-hmpv-testing-manage human-metapneumovirus-hmpv-testing-manage 1.0 SQL Injection [Duplicate]
1 month 3 weeks ago
Submit #626294 / VDB-299872
liule
CVE-2025-54132 | Cursor up to 1.2 Mermaid server-side request forgery (GHSA-43wj-mwcc-x93p / EUVD-2025-23407)
1 month 3 weeks ago
A vulnerability was found in Cursor up to 1.2. It has been rated as critical. This issue affects some unknown processing of the component Mermaid. The manipulation leads to server-side request forgery.
The identification of this vulnerability is CVE-2025-54132. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Он не требует учётки и не следит за вами. Что за странный аутентификатор запустила Proton?
1 month 3 weeks ago
Этот аутентификатор не стучит в Google. Он вообще ни с кем не говорит.
CVE-2025-54133 | Cursor up to 1.2 Model Context Protocol os command injection (GHSA-r22h-5wp2-2wfv / EUVD-2025-23406)
1 month 3 weeks ago
A vulnerability was found in Cursor up to 1.2. It has been declared as critical. This vulnerability affects unknown code of the component Model Context Protocol. The manipulation leads to os command injection.
This vulnerability was named CVE-2025-54133. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com