Ugrás a tartalomra

Riasztások

2025. Feb. 14.

NA - CVE-2025-25206 - eLabFTW is an open source electronic lab...

eLabFTW is an open source electronic lab notebook for research labs. Prior to version 5.1.15, an incorrect input validation could allow an authenticated user to read sensitive information,...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25295 - Label Studio is an open source data labeling...

Label Studio is an open source data labeling tool. A path traversal vulnerability in Label Studio SDK versions prior to 1.0.10 allows unauthorized file access outside the intended directory...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25988 - Cross Site Scripting vulnerability in hooskcms...

Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25990 - Cross Site Scripting vulnerability in hooskcms...

Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25991 - SQL Injection vulnerability in hooskcms v.1.7.1...

SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25992 - SQL Injection vulnerability in FeMiner wms 1.0...

SQL Injection vulnerability in FeMiner wms 1.0 allows a remote attacker to obtain sensitive information via the inquire_inout_item.php component.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25993 - SQL Injection vulnerability in FeMiner wms wms...

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive information via the parameter "itemid."
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25994 - SQL Injection vulnerability in FeMiner wms wms...

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive information via the parameters date1, date2, id.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-25997 - Directory Traversal vulnerability in FeMiner...

Directory Traversal vulnerability in FeMiner wms v.1.0 allows a remote attacker to obtain sensitive information via the databak.php component.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-26156 - A SQL Injection vulnerability was found in...

A SQL Injection vulnerability was found in /shopping/track-orders.php in PHPGurukul Online Shopping Portal v2.1, which allows remote attackers to execute arbitrary code via orderid POST request...
security-database.com
Tovább
Nyelv