Aggregator

Грибные образцы переключали состояния до 5850 раз в секунду с точностью около 90 процентов.

Где проходит красная линия современной биотехнологии возрождения видов.

A vulnerability was found in code-projects Courier Management System 1.0. It has been rated as critical. This impacts an unknown function of the file /courier/edit-courier.php. The manipulation of the argument OfficeName leads to sql injection. This vulnerability is uniquely identified as CVE-2025-12316. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability was found in code-projects Food Ordering System 1.0. It has been declared as critical. This affects an unknown function of the file /admin/menu.php. Executing manipulation of the argument itemPrice can lead to sql injection. This vulnerability is handled as CVE-2025-12315. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability was found in code-projects Food Ordering System 1.0. It has been classified as critical. The impacted element is an unknown function of the file /admin/deleteitem.php. Performing manipulation of the argument itemID results in sql injection. This vulnerability is known as CVE-2025-12314. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability was found in D-Link DI-7001 MINI 19.09.19A1/24.04.18B1 and classified as critical. The affected element is an unknown function of the file /msp_info.htm. Such manipulation of the argument cmd leads to command injection. This vulnerability is traded as CVE-2025-12313. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #677084 / VDB-329988

Submit #677036 / VDB-329987

Submit #677029 / VDB-329986

A vulnerability has been found in PHPGurukul Curfew e-Pass Management System 1.0 and classified as problematic. Impacted is an unknown function of the file view-pass-detail.php. This manipulation of the argument Fullname/Category causes cross site scripting. This vulnerability appears as CVE-2025-12312. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability, which was classified as problematic, was found in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects some unknown processing of the file edit-category-detail.php. The manipulation of the argument catname results in cross site scripting. This vulnerability is reported as CVE-2025-12311. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability, which was classified as problematic, has been found in VirtFusion up to 6.0.2. This vulnerability affects unknown code of the file /account/_settings of the component Email Change Handler. The manipulation leads to improper restriction of excessive authentication attempts. This vulnerability is documented as CVE-2025-12310. The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

Submit #676887 / VDB-329985

A vulnerability classified as critical was found in code-projects Nero Social Networking Site 1.0. This affects an unknown part of the file /friendprofile.php. Executing manipulation of the argument ID can lead to sql injection. This vulnerability is registered as CVE-2025-12309. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability classified as critical has been found in code-projects Nero Social Networking Site 1.0. Affected by this issue is some unknown functionality of the file /deletemessage.php. Performing manipulation of the argument message_id results in sql injection. This vulnerability is cataloged as CVE-2025-12308. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability described as critical has been identified in code-projects Nero Social Networking Site 1.0. Affected by this vulnerability is an unknown functionality of the file /addfriend.php. Such manipulation of the argument ID leads to sql injection. This vulnerability is listed as CVE-2025-12307. The attack may be performed from remote. In addition, an exploit is available.