Aggregator

A vulnerability was found in ScriptAndTools Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file userdelete.php of the component User Delete Handler. The manipulation of the argument ID leads to authorization bypass. The identification of this vulnerability is CVE-2025-6329. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #596579 / VDB-313330

Submit #596535 / VDB-313329

Submit #596534 / VDB-313328

Submit #596533 / VDB-313327

Submit #596532 / VDB-313326

A vulnerability was found in D-Link DIR-815 1.01. It has been declared as critical. This vulnerability affects the function sub_403794 of the file hedwig.cgi. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2025-6328. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #596472 / VDB-313325

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0. It has been classified as critical. This affects an unknown part of the file /enrollment.php. The manipulation of the argument fathername leads to sql injection. This vulnerability is uniquely identified as CVE-2025-6323. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /visit.php. The manipulation of the argument gname leads to sql injection. This vulnerability is handled as CVE-2025-6322. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add-subadmin.php. The manipulation of the argument sadminusername leads to sql injection. This vulnerability is known as CVE-2025-6321. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in PHPGurukul Pre-School Enrollment System 1.0. Affected is an unknown function of the file /admin/add-class.php. The manipulation of the argument classname leads to sql injection. This vulnerability is traded as CVE-2025-6320. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in PHPGurukul Pre-School Enrollment System 1.0. This issue affects some unknown processing of the file /admin/add-teacher.php. The manipulation of the argument tsubject leads to sql injection. The identification of this vulnerability is CVE-2025-6319. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in PHPGurukul Pre-School Enrollment System 1.0. This vulnerability affects unknown code of the file /admin/check_availability.php. The manipulation of the argument Username leads to sql injection. This vulnerability was named CVE-2025-6318. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #596439 / VDB-313324

今日新增：菲律宾、伊朗、越南动态。

伊朗最新消息特别报道，2025年6月18日早间版关键要点：最近几个小时，以色列的袭击重点是伊朗导弹计划。

以色列开源情报工具。

伊朗采取行动阻止以色列开展网络战

客户应检查MCP访问日志和权限控制