CVEs from 2025
Total
11,985
critical
critical 1,301
high
high 1,894
medium
medium 1,908
low
low 193
% Critical
10.9%
% with KEV
1.5%
% with exploit
1.5%
Top vendors
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- microsoft 107
- redhat 106
- portabilis 94
- mayurik 79
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- inventory_management_system 28
- gcp 24
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2025-10802 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /administrator/remove.php. This manipulation of the argument ID causes sql injection. It … | |
| CVE-2025-10801 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0. This affects an unknown function of the file /admin/edit_tax.php. The manipulation of the argument I… | |
| CVE-2025-10800 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in itsourcecode Online Discussion Forum 1.0. The impacted element is an unknown function of the file /index.php. Executing manipulation of the argument email/password c… | |
| CVE-2025-10799 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in code-projects Hostel Management System 1.0. The affected element is an unknown function of the file /justines/admin/mod_reservation/index.php?view=view. Perform… | |
| CVE-2025-10798 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in code-projects Hostel Management System 1.0. Impacted is an unknown function of the file /justines/admin/mod_roomtype/index.php?view=view. Such manipulation of the ar… | |
| CVE-2025-10797 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in code-projects Hostel Management System 1.0. This issue affects some unknown processing of the file /justines/index.php. This manipulation of the argument log_email c… | |
| CVE-2025-10796 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in code-projects Hostel Management System 1.0. This vulnerability affects unknown code of the file /justines/admin/login.php. The manipulation of the argument email results … | |
| CVE-2025-10795 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in code-projects Online Bidding System 1.0. This affects an unknown part of the file /administrator/bidupdate.php. The manipulation of the argument ID leads to sql inje… | |
| CVE-2025-10793 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/admin_account_delete.php. Performing manipulation o… | |
| CVE-2025-10791 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/index.php. This manipulation of the argument aduser causes sql i… | |
| CVE-2025-10789 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. The impacted element is an unknown function of the file deleteslide.php. The manipulation of the argument ID lead… | |
| CVE-2025-10788 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in SourceCodester Online Hotel Reservation System 1.0. The affected element is an unknown function of the file deleteroominventory.php. Executing manipulation of the ar… | |
| CVE-2025-10786 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_user. This manipulation of the argument ID cause… | |
| CVE-2025-10785 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown part of the file /manage_user.php. The manipulation of the argument ID results in sql injecti… | |
| CVE-2025-10784 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in Campcodes Online Learning Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/edit_subject.php. The manipulati… | |
| CVE-2025-10783 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in Campcodes Online Learning Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add_subject.php. Executing manipulatio… | |
| CVE-2025-10782 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /admin/class.php. Performing manipulation of the argument class_nam… | |
| CVE-2025-10781 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Campcodes Online Learning Management System 1.0. This impacts an unknown function of the file /admin/edit_class.php. Such manipulation of the argument class_name lea… | |
| CVE-2025-10771 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in jeecgboot JimuReport up to 2.1.2. Affected is an unknown function of the file /drag/onlDragDataSource/testConnection of the component DB2 JDBC Handler. Executing man… | |
| CVE-2025-10769 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in h2oai h2o-3 up to 3.46.08. This affects an unknown function of the file /99/ImportSQLTable of the component H2 JDBC Driver. Such manipulation of the argument connect… | |
| CVE-2025-10768 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in h2oai h2o-3 up to 3.46.08. The impacted element is an unknown function of the file /99/ImportSQLTable of the component IBMDB2 JDBC Driver. This manipulation of the argument c… | |
| CVE-2025-10689 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in D-Link DIR-645 105B01. This issue affects the function soapcgi_main of the file /soap.cgi. Such manipulation of the argument service leads to command injection. The … | |
| CVE-2025-10688 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. This vulnerability affects unknown code of the file /admin/operation/paid.php. This manipulation of the argument… | |
| CVE-2025-10687 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in SourceCodester Responsive E-Learning System 1.0. This affects an unknown part of the file /admin/add_teacher.php. The manipulation of the argument Username results in sql… | |
| CVE-2025-10673 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of … | |
| CVE-2025-10670 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This issue affects some unknown processing of the file /check_profile.php. Executing manipulation of th… | |
| CVE-2025-10668 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of the file /members/compose_msg_admin.php. Such manipulation of the argument ID l… | |
| CVE-2025-10667 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in itsourcecode Online Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /members/compose_msg.php. This manipulation of the argumen… | |
| CVE-2025-10665 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. Affected is an unknown function of the file /Profilers/PProfile/COUNT3s3.php. The manipu… | |
| CVE-2025-10664 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /create-ticket.php. Executing manipulation of the argument subject can lead to sql injection. … | |
| CVE-2025-10663 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in PHPGurukul Online Course Registration 3.1. This affects an unknown function of the file /my-profile.php. Performing manipulation of the argument cgpa results in sql injec… | |
| CVE-2025-10662 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /admin_members.php?ac=editsave. Such manipulation of the argument ID leads to sql injectio… | |
| CVE-2025-10624 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in PHPGurukul User Management System 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument emailid results in sql i… | |
| CVE-2025-10623 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in SourceCodester Hotel Reservation System 1.0. The impacted element is an unknown function of the file deleteuser.php. Such manipulation of the argument ID leads to sq… | |
| CVE-2025-10621 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in SourceCodester Hotel Reservation System 1.0. The affected element is an unknown function of the file editroomimage.php. This manipulation of the argument ID causes s… | |
| CVE-2025-10604 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in PHPGurukul Online Discussion Forum 1.0. This affects an unknown part of the file /admin/edit_member.php. The manipulation of the argument ID leads to sql injection. … | |
| CVE-2025-10603 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in PHPGurukul Online Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /admin/admin_forum/search_result.php. Executing manipulation… | |
| CVE-2025-10601 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0. Affected is an unknown function of the file /admin/index.php. Such manipulation of the argument email leads to sql in… | |
| CVE-2025-10600 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in SourceCodester Online Exam Form Submission 1.0. This impacts an unknown function of the file /register.php. This manipulation of the argument img causes unrestricted upload. … | |
| CVE-2025-10599 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in itsourcecode Web-Based Internet Laboratory Management System 1.0. Impacted is the function User::AuthenticateUser of the file login.php. Performing manipulation… | |
| CVE-2025-10598 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in SourceCodester Pet Grooming Management Software 1.0. This issue affects some unknown processing of the file /admin/search_product.php. Such manipulation of the argum… | |
| CVE-2025-10596 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument usn results in sql injection. The at… | |
| CVE-2025-10565 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Campcodes Grocery Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=delete_receiving. Executing… | |
| CVE-2025-10564 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=delete_category. Performing manipulation of the argument ID… | |
| CVE-2025-34186 | critical | 9.8 | 9.8 | 8mo ago | Ilevia EVE X1/X5 Server version ≤ 4.7.18.0.eden contains a vulnerability in its authentication mechanism. Unsanitized input is passed to a system() call for authentication, allowing attackers to inje… | |
| CVE-2025-10563 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in Campcodes Grocery Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=save_category. Such manipulation of the argument ID l… | |
| CVE-2025-10562 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown function of the file /ajax.php?action=save_product. This manipulation of the argument ID causes sql … | |
| CVE-2025-10482 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in SourceCodester Online Student File Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument Username resul… | |
| CVE-2025-10480 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in SourceCodester Online Student File Management System 1.0. This affects an unknown function of the file /save_file.php. Executing manipulation can lead to unrestricte… | |
| CVE-2025-10479 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in SourceCodester Online Student File Management System 1.0. The impacted element is an unknown function of the file /index.php. Performing manipulation of the arg… | |
| CVE-2025-10477 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown function of the file /Profilers/PriProfile/eligibilit… | |
| CVE-2025-10473 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in yangzongzhuan RuoYi up to 4.8.1. This impacts the function filterKeyword of the file /com/ruoyi/common/utils/sql/SqlUtil.java of the component Blacklist Handler… | |
| CVE-2025-10459 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/all-appointment.php. The manipulation of the argument delid res… | |
| CVE-2025-10448 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in Campcodes Online Job Finder System 1.0. This affects an unknown function of the file /index.php?q=result&searchfor=bycompany. This manipulation of the argument Search causes … | |
| CVE-2025-10447 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in Campcodes Online Job Finder System 1.0. The impacted element is an unknown function of the file /eris/applicationform.php. The manipulation of the argument picture res… | |
| CVE-2025-10446 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/cust_searchfrm.php?action=edit. The man… | |
| CVE-2025-10445 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Computer Sales and Inventory System 1.0. Impacted is an unknown function of the file /pages/us_transac.php?action=add. Executing manipulation of the argume… | |
| CVE-2025-10444 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in Campcodes Online Job Finder System 1.0. This issue affects some unknown processing of the file /advancesearch.php. Performing manipulation of the argument Usern… | |
| CVE-2025-10436 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Computer Sales and Inventory System 1.0. The impacted element is an unknown function of the file /pages/sup_searchfrm.php?action=edit. This manipulation of… | |
| CVE-2025-10435 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/cust_edit1.php. The manipulation of the argume… | |
| CVE-2025-10426 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in itsourcecode Online Laundry Management System 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument Username res… | |
| CVE-2025-10425 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in 1000projects Online Student Project Report Submission and Evaluation System 1.0. The impacted element is an unknown function of the file /admin/controller/student_co… | |
| CVE-2025-10424 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in 1000projects Online Student Project Report Submission and Evaluation System 1.0. The affected element is an unknown function of the file /admin/controller/faculty_co… | |
| CVE-2025-10417 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in Campcodes Grocery Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=delete_product. The manipulation of the argument … | |
| CVE-2025-10416 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in Campcodes Grocery Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=delete_supplier. The manipulation of the argument ID … | |
| CVE-2025-10415 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown function of the file /ajax.php?action=save_supplier. Executing manipulation of the argument… | |
| CVE-2025-10414 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. The impacted element is an unknown function of the file /ajax.php?action=save_customer. Performing manipulation of the a… | |
| CVE-2025-10413 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in Campcodes Grocery Sales and Inventory System 1.0. The affected element is an unknown function of the file /ajax.php?action=delete_customer. Such manipulation of the … | |
| CVE-2025-10410 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in SourceCodester Link Status Checker 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument proxy leads to se… | |
| CVE-2025-10405 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in itsourcecode Baptism Information Management System 1.0. Affected is an unknown function of the file /listbaptism.php. This manipulation of the argument bapt_id cause… | |
| CVE-2025-10404 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in itsourcecode Baptism Information Management System 1.0. This impacts an unknown function of the file /rptbaptismal.php. The manipulation of the argument ID results in sql… | |
| CVE-2025-10403 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown function of the file /admin/view-enquiry.php. The manipulation of the argument viewid leads … | |
| CVE-2025-10402 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in PHPGurukul Beauty Parlour Management System 1.1. The impacted element is an unknown function of the file /admin/readenq.php. Executing manipulation of the argument delid can … | |
| CVE-2025-10396 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/edit_role.php. Executing manipulation of… | |
| CVE-2025-10359 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in Wavlink WL-WN578W2 221110. This impacts the function sub_404DBC of the file /cgi-bin/wireless.cgi. The manipulation of the argument macAddr results in os command injec… | |
| CVE-2025-10358 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in Wavlink WL-WN578W2 221110. This affects the function sub_404850 of the file /cgi-bin/wireless.cgi. The manipulation of the argument delete_list leads to … | |
| CVE-2025-10329 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in cdevroe unmark up to 1.9.3. This affects an unknown part of the file /application/controllers/Marks.php. The manipulation of the argument url results in server-side re… | |
| CVE-2025-10328 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this issue is some unknown functionality of the file /htdocs/api/playlist/playsinglefile.php. The mani… | |
| CVE-2025-10327 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this vulnerability is an unknown functionality of the file /htdocs/api/playlist/shuffle.php. Executing manipulatio… | |
| CVE-2025-10326 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected is an unknown function of the file /htdocs/api/playlist/single.php. Performing manipulation of the argument play… | |
| CVE-2025-10324 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in Wavlink WL-WN578W2 221110. This affects the function sub_401C5C of the file firewall.cgi. This manipulation of the argument pingFrmWANFilterEnabled/blockSynFloodEnab… | |
| CVE-2025-10323 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Wavlink WL-WN578W2 221110. The impacted element is the function sub_409184 of the file /wizard_rep.shtml. The manipulation of the argument sel_EncrypTyp results in comman… | |
| CVE-2025-10251 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in FoxCMS up to 1.24. Affected by this issue is the function batchCope of the file /app/admin/controller/Images.php. The manipulation of the argument ids results in sql i… | |
| CVE-2025-10218 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in lostvip-com ruoyi-go 2.1. This affects the function SelectListPage of the file modules/system/dao/SysRoleDao.go of the component Background Management Page. This manipulation… | |
| CVE-2025-10123 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub_415028 of the file /goform/set_static_leases. Executing manipulation of the argument… | |
| CVE-2025-10118 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. The affected element is an unknown function of the file /login.php. The manipulati… | |
| CVE-2025-10114 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in PHPGurukul Small CRM 4.0. Affected by this issue is some unknown functionality of the file /profile.php. The manipulation of the argument Name results in sql injection. T… | |
| CVE-2025-10113 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in itsourcecode Student Information Management System 1.0. This affects an unknown function of the file /admin/modules/room/index.php. Such manipulation of … | |
| CVE-2025-10112 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/department/index.php. This manipulatio… | |
| CVE-2025-10111 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/instructor/index.php. The manipul… | |
| CVE-2025-10109 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in Campcodes Online Loan Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_payment. Executing manipulation of the ar… | |
| CVE-2025-10108 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Campcodes Online Loan Management System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_loan. Performing manipulation of the argument ID … | |
| CVE-2025-10104 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /review_search.php. The manipulation of the argument txtsearch… | |
| CVE-2025-10103 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in code-projects Online Event Judging System 1.0. This impacts an unknown function of the file /home.php. Executing manipulation of the argument main_event can lead to … | |
| CVE-2025-10102 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results… | |
| CVE-2025-10100 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in SourceCodester Simple Forum Discussion System 1.0. This impacts an unknown function of the file /admin_class.php?action=login. Performing manipulation of the argument … | |
| CVE-2025-10092 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Jinher OA up to 1.2. This impacts an unknown function of the file /c6/Jhsoft.Web.projectmanage/TaskManage/AddTask.aspx/?Type=add of the component XML Handler. The manipul… | |
| CVE-2025-10091 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in Jinher OA up to 1.2. This affects an unknown function of the file /c6/Jhsoft.Web.projectmanage/ProjectManage/XmlHttp.aspx/?Type=add of the component XML Handler. The… | |
| CVE-2025-10090 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead t… | |
| CVE-2025-10082 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file /admin/manage-admins.php. Such manipulation of the argument email leads to sql … |