Aggregator

CVE-2014-1804 | Microsoft Internet Explorer 8 memory corruption (MS14-035 / EDB-33860)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Microsoft Internet Explorer 8. It has been rated as critical. This impacts an unknown function. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2014-1804. The attack is possible to be carried out remotely. Moreover, an exploit is present. Applying a patch is the recommended action to fix this issue.
vuldb.com

CVE-2014-1805 | Microsoft Internet Explorer 9/10/11 memory corruption (MS14-035 / EDB-33860)

Vuldb Updates
3 months 2 weeks ago
A vulnerability categorized as critical has been discovered in Microsoft Internet Explorer 9/10/11. Affected is an unknown function. The manipulation results in memory corruption. This vulnerability was named CVE-2014-1805. The attack may be performed from remote. In addition, an exploit is available. It is best practice to apply a patch to resolve this issue.
vuldb.com

CVE-2025-9761 | Campcodes Online Feeds Product Inventory System 1.0 Login /feeds/index.php Username sql injection (EUVD-2025-26327)

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability was found in Campcodes Online Feeds Product Inventory System 1.0. It has been classified as critical. This vulnerability affects unknown code of the file /feeds/index.php of the component Login. The manipulation of the argument Username leads to sql injection. This vulnerability is documented as CVE-2025-9761. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com

CVE-2025-9760 | Portabilis i-Educar up to 2.10 Matricula API /module/Api/aluno improper authorization

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability was found in Portabilis i-Educar up to 2.10 and classified as critical. This affects an unknown part of the file /module/Api/aluno of the component Matricula API. Executing manipulation can lead to improper authorization. This vulnerability is registered as CVE-2025-9760. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com

CVE-2025-9759 | Campcodes/SourceCodester Courier Management System 1.0 /ajax.php signup lastname sql injection (EUVD-2025-26325)

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability has been found in Campcodes/SourceCodester Courier Management System 1.0 and classified as critical. Affected by this issue is the function Signup of the file /ajax.php. Performing manipulation of the argument lastname results in sql injection. This vulnerability is cataloged as CVE-2025-9759. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-9758 | deepakmisal24 Chemical Inventory Management System up to 1.0 /inventory_form.php chem_name sql injection

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability, which was classified as critical, was found in deepakmisal24 Chemical Inventory Management System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /inventory_form.php. Such manipulation of the argument chem_name leads to sql injection. This vulnerability is listed as CVE-2025-9758. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com

CVE-2025-9757 | Campcodes/SourceCodester Courier Management System 1.0 /ajax.php login email sql injection (EUVD-2025-26322)

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Campcodes/SourceCodester Courier Management System 1.0. Affected is the function Login of the file /ajax.php. This manipulation of the argument email causes sql injection. This vulnerability is tracked as CVE-2025-9757. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com

CVE-2025-9756 | PHPGurukul User Management System 1.0 change-emailid.php uid sql injection (EUVD-2025-26317)

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability classified as critical was found in PHPGurukul User Management System 1.0. This impacts an unknown function of the file /admin/change-emailid.php. The manipulation of the argument uid results in sql injection. This vulnerability is identified as CVE-2025-9756. The attack can be executed remotely. Additionally, an exploit exists.
vuldb.com

TransUnion Data Breach Exposes 4.5 Million Records Through Third-Party App

Security Boulevard
3 months 2 weeks ago

TransUnion, one of the nation’s three major credit reporting agencies, has confirmed a cyberattack that exposed sensitive personal information for more than 4.4 million U.S. consumers. The incident, discovered on July 30, traces back to vulnerabilities in a third-party application used in TransUnion’s consumer support operations. How the Breach Happened According to TransUnion, attackers exploited […]

The post TransUnion Data Breach Exposes 4.5 Million Records Through Third-Party App appeared first on Centraleyes.

The post TransUnion Data Breach Exposes 4.5 Million Records Through Third-Party App appeared first on Security Boulevard.

Rebecca Kappel

Managed ad