Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_task.php?id=.Read More ...
Continue Reading
May 26, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user.Read More ...
Continue Reading
May 26, 2023
mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty.Read More ...
Continue Reading
May 26, 2023
The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of this vulnerability may affect availability of features,such as M ...
Continue Reading
May 26, 2023
A stored cross-site scripting (XSS) vulnerability in TFDi Design smartCARS 3 v0.7.0 and below allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the body of ...
Continue Reading
May 26, 2023
The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality.Read More ...
Continue Reading
May 26, 2023
A post-authentication stored cross-site scripting vulnerability exists in Craft CMS versions Read More ...
Continue Reading
May 26, 2023
A lateral privilege escalation vulnerability in XXL-Job v2.4.1 allows users to execute arbitrary commands on another user's account via a crafted POST request to the component /jobinfo/.Read More ...
Continue Reading
May 26, 2023
Back to Main
