HelloGookie
You must login to view this content
Aggregator
HelloGookie
2 months 3 weeks ago
You must login to view this content
cohenido
HelloGookie
2 months 3 weeks ago
You must login to view this content
cohenido
Silent
2 months 3 weeks ago
You must login to view this content
cohenido
CVE-2019-11358 | Oracle Financial Services Profitability Management 8.0.4/8.0.5/8.0.6/8.0.7 Apache ActiveMQ cross site scripting (EDB-52141 / Nessus ID 208606)
2 months 3 weeks ago
A vulnerability classified as critical has been found in Oracle Financial Services Profitability Management 8.0.4/8.0.5/8.0.6/8.0.7. Affected is an unknown function of the component Apache ActiveMQ. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2019-11358. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-22106 | Linux Kernel up to 6.14.1 net/core/xdp.c vmxnet3_reset_work privilege escalation (Nessus ID 240657)
2 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.14.1. It has been declared as problematic. Affected by this vulnerability is the function vmxnet3_reset_work of the file net/core/xdp.c. The manipulation leads to privilege escalation.
This vulnerability is known as CVE-2025-22106. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-37869 | Linux Kernel up to 6.12.24/6.14.3/6.15-rc1 xe_migrate_clear use after free (Nessus ID 240657)
2 months 3 weeks ago
A vulnerability has been found in Linux Kernel up to 6.12.24/6.14.3/6.15-rc1 and classified as critical. Affected by this vulnerability is the function xe_migrate_clear. The manipulation leads to use after free.
This vulnerability is known as CVE-2025-37869. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-37760 | Linux Kernel up to 6.12.24/6.14.3/6.15-rc2 vma vma_modify allocation of resources (Nessus ID 240657)
2 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.12.24/6.14.3/6.15-rc2. Affected by this issue is the function vma_modify of the component vma. The manipulation leads to allocation of resources.
This vulnerability is handled as CVE-2025-37760. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-37834 | Linux Kernel up to 6.12.25/6.14.4 vmscan me_swapcache_dirty reference count (Nessus ID 240657)
2 months 3 weeks ago
A vulnerability has been found in Linux Kernel up to 6.12.25/6.14.4 and classified as critical. Affected by this vulnerability is the function me_swapcache_dirty of the component vmscan. The manipulation leads to improper update of reference count.
This vulnerability is known as CVE-2025-37834. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-37877 | Linux Kernel up to 6.12.25/6.14.4/6.15-rc1 IOMMU Driver iommu_device_register denial of service (Nessus ID 240657)
2 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.12.25/6.14.4/6.15-rc1 and classified as critical. This issue affects the function iommu_device_register of the component IOMMU Driver. The manipulation leads to denial of service.
The identification of this vulnerability is CVE-2025-37877. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-6891 | code-projects Inventory Management System 1.0 createUser.php Username sql injection (EUVD-2025-19517)
2 months 3 weeks ago
A vulnerability classified as critical has been found in code-projects Inventory Management System 1.0. Affected is an unknown function of the file /php_action/createUser.php. The manipulation of the argument Username leads to sql injection.
This vulnerability is traded as CVE-2025-6891. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6890 | code-projects Movie Ticketing System 1.0 /ticketConfirmation.php Date sql injection (EUVD-2025-19512)
2 months 3 weeks ago
A vulnerability was found in code-projects Movie Ticketing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /ticketConfirmation.php. The manipulation of the argument Date leads to sql injection.
The identification of this vulnerability is CVE-2025-6890. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6889 | code-projects Movie Ticketing System 1.0 /logIn.php postName sql injection (EUVD-2025-19515)
2 months 3 weeks ago
A vulnerability was found in code-projects Movie Ticketing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /logIn.php. The manipulation of the argument postName leads to sql injection.
This vulnerability was named CVE-2025-6889. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6888 | PHPGurukul Teachers Record Management System 2.1 /admin/changeimage.php tid sql injection (EUVD-2025-19510)
2 months 3 weeks ago
A vulnerability was found in PHPGurukul Teachers Record Management System 2.1. It has been classified as critical. This affects an unknown part of the file /admin/changeimage.php. The manipulation of the argument tid leads to sql injection.
This vulnerability is uniquely identified as CVE-2025-6888. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6887 | Tenda AC5 15.03.06.47 /goform/SetSysTimeCfg time/timeZone stack-based overflow (EUVD-2025-19511)
2 months 3 weeks ago
A vulnerability was found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/SetSysTimeCfg. The manipulation of the argument time/timeZone leads to stack-based buffer overflow.
This vulnerability is handled as CVE-2025-6887. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6886 | Tenda AC5 15.03.06.47 /goform/openSchedWifi schedStartTime/schedEndTime stack-based overflow
2 months 3 weeks ago
A vulnerability has been found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to stack-based buffer overflow.
This vulnerability is known as CVE-2025-6886. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #603882: code-projects Inventory Management System V1.0 SQL Injection [Accepted]
2 months 3 weeks ago
Submit #603882 / VDB-314370
Jonathan_Tang
Submit #603855: code-projects Inventory Management System V1.0 SQL injection [Duplicate]
2 months 3 weeks ago
Submit #603855 / VDB-314278
Jonathan_Tang
Submit #603844: code-projects Movie Ticketing System V1.0 SQL injection [Accepted]
2 months 3 weeks ago
Submit #603844 / VDB-314369
meraklbz
Submit #603831: code-projects Movie Ticketing System V1.0 SQL Injection [Accepted]
2 months 3 weeks ago
Submit #603831 / VDB-314368
meraklbz