CVEs from 2025
Total
9,418
critical
critical 1,301
high
high 1,907
medium
medium 1,905
low
low 193
% Critical
13.8%
% with KEV
1.9%
% with exploit
2.0%
Top vendors
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- microsoft 107
- redhat 106
- portabilis 94
- mayurik 79
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- inventory_management_system 28
- gcp 24
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2025-10082 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file /admin/manage-admins.php. Such manipulation of the argument email leads to sql … | |
| CVE-2025-10079 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in PHPGurukul Small CRM 4.0. Affected by this vulnerability is an unknown functionality of the file /get-quote.php. Executing manipulation of the argument Contact can lead to sq… | |
| CVE-2025-10078 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file /admin/candidates.php. Performing manipulation of the argument ID results in sql … | |
| CVE-2025-10077 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in SourceCodester Online Polling System 1.0. This impacts an unknown function of the file /registeracc.php. Such manipulation of the argument email leads to… | |
| CVE-2025-10076 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in SourceCodester Online Polling System 1.0. This affects an unknown function of the file /manage-profile.php. This manipulation of the argument email causes sql inject… | |
| CVE-2025-10068 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin/admin_forum/add_views.php. Executing manipulation of the argument ID can lead to… | |
| CVE-2025-10062 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in itsourcecode Student Information Management System 1.0. This affects an unknown part of the file /admin/login.php. Executing manipulation of the argument uname can l… | |
| CVE-2025-10033 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin. Such manipulation of the argument Username leads to sql injection. The… | |
| CVE-2025-10031 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in Campcodes Grocery Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=delete_sales. The manipulation of the argu… | |
| CVE-2025-10030 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Grocery Sales and Inventory System 1.0. This issue affects some unknown processing of the file /ajax.php?action=save_receiving. Executing manipulation of t… | |
| CVE-2025-10025 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in PHPGurukul Online Course Registration 3.1. Affected is an unknown function of the file /admin/semester.php. The manipulation of the argument semester leads to sql in… | |
| CVE-2025-9935 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in TOTOLINK N600R 4.3.0cu.7866_B20220506. This vulnerability affects the function sub_4159F8 of the file /web_cste/cgi-bin/cstecgi.cgi. Executing manipulation can lead … | |
| CVE-2025-9934 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in TOTOLINK X5000R 9.1.0cu.2415_B20250515. This affects the function sub_410C34 of the file /cgi-bin/cstecgi.cgi. Performing manipulation of the argument pid results in comm… | |
| CVE-2025-9933 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this issue is some unknown functionality of the file /admin/view-appointment.php. Such manipulation of t… | |
| CVE-2025-9932 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this vulnerability is an unknown functionality of the file /admin/update-image.php. This manipulation of the argu… | |
| CVE-2025-9930 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in 1000projects Beauty Parlour Management System 1.0. This impacts an unknown function of the file /admin/contact-us.php. The manipulation of the argument m… | |
| CVE-2025-9928 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted element is an unknown function of the file /viewcategory.php. Performing manipulation of the argument t… | |
| CVE-2025-9927 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in projectworlds Travel Management System 1.0. The affected element is an unknown function of the file /viewpackage.php. Such manipulation of the argument t1 leads to s… | |
| CVE-2025-9926 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in projectworlds Travel Management System 1.0. Impacted is an unknown function of the file /viewsubcategory.php. This manipulation of the argument t1 causes sql injecti… | |
| CVE-2025-9925 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in projectworlds Travel Management System 1.0. This issue affects some unknown processing of the file /detail.php. The manipulation of the argument pid results in sql inject… | |
| CVE-2025-9924 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /enquiry.php. The manipulation of the argument t2 leads to sql inject… | |
| CVE-2025-9919 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects an unknown function of the file /admin/bwdates-reports-details.php. The manipulation of the argument … | |
| CVE-2025-9847 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is an unknown function of the file register.php. This manipulation of the argument uimage causes unrestric… | |
| CVE-2025-9840 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/gametype.php. Executing manipulation of the argument code c… | |
| CVE-2025-9839 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing mani… | |
| CVE-2025-9838 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in itsourcecode Student Information Management System 1.0. Impacted is an unknown function of the file /admin/modules/subject/index.php. Such manipulation of the argume… | |
| CVE-2025-9837 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of… | |
| CVE-2025-9833 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in SourceCodester Online Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Login/login.php. Performing manipulation of t… | |
| CVE-2025-9832 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in SourceCodester Food Ordering Management System 1.0. Affected is an unknown function of the file /routers/register-router.php. Such manipulation of the ar… | |
| CVE-2025-9831 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in PHPGurukul Beauty Parlour Management System 1.1. This impacts an unknown function of the file /admin/edit-services.php. This manipulation of the argument sername cau… | |
| CVE-2025-9830 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown function of the file /admin/add-customer-services.php. The manipulation of the argument… | |
| CVE-2025-9829 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. The impacted element is an unknown function of the file /signup.php. The manipulation of the argument mobilenumber l… | |
| CVE-2025-9814 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. Impacted is an unknown function of the file /admin/contact-us.php. The manipulation of the argument mobnumber r… | |
| CVE-2025-9811 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Campcodes Farm Management System 1.0. This affects an unknown part of the file /reviewInput.php. Performing manipulation of the argument rating results in sql injection. … | |
| CVE-2025-9794 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/pos_transac.php?action=add. Executing manipulation of the ar… | |
| CVE-2025-9793 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in itsourcecode Apartment Management System 1.0. Impacted is an unknown function of the file /setting/admin.php of the component Setting Handler. Performing manipulation … | |
| CVE-2025-9792 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /e_dashboard/e_all_info.php. Such manipulation of th… | |
| CVE-2025-9790 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in SourceCodester Hotel Reservation System 1.0. This affects an unknown part of the file /admin/updateabout.php. The manipulation of the argument address results i… | |
| CVE-2025-9789 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file /admin/edituser.php. The manipulation of the arg… | |
| CVE-2025-9788 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in SourceCodester/Campcodes School Log Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin_class.php. Executing m… | |
| CVE-2025-9786 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teacher_signup.php. Performing manipulation of the argument firstname result… | |
| CVE-2025-9775 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in RemoteClinic up to 2.0. Impacted is an unknown function of the file /staff/edit-my-profile.php. The manipulation of the argument image results in unrestricted upload. The… | |
| CVE-2025-9772 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in RemoteClinic up to 2.0. This affects an unknown part of the file /staff/edit.php. Performing manipulation of the argument image results in unrestricted upload. The att… | |
| CVE-2025-9771 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in SourceCodester Eye Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file /main/search_index_Diagnosis.php. Such … | |
| CVE-2025-9770 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ of the component Admin Dashboard Login. This… | |
| CVE-2025-9767 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an unknown function of the file /Admin/sporttype.php. Executing manipulation of the argument code can lead to… | |
| CVE-2025-9766 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/facilitator.php. Performing manipulation of the argument code re… | |
| CVE-2025-9765 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in itsourcecode Sports Management System 1.0. The affected element is an unknown function of the file /Admin/tournament_details.php. Such manipulation of the argument I… | |
| CVE-2025-9764 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in itsourcecode Sports Management System 1.0. Impacted is an unknown function of the file /Admin/resultdetails.php. This manipulation of the argument ID causes sql injection. Th… | |
| CVE-2025-9763 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in Campcodes Online Learning Management System 1.0. This issue affects some unknown processing of the file /student_signup.php. The manipulation of the argument Username … | |
| CVE-2025-9761 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in Campcodes Online Feeds Product Inventory System 1.0. This vulnerability affects unknown code of the file /feeds/index.php of the component Login. The man… | |
| CVE-2025-9759 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in Campcodes/SourceCodester Courier Management System 1.0. Affected by this issue is the function Signup of the file /ajax.php. Performing manipulation of the argu… | |
| CVE-2025-9758 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in deepakmisal24 Chemical Inventory Management System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /inventory_form.php. Such manipu… | |
| CVE-2025-9757 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in Campcodes/SourceCodester Courier Management System 1.0. Affected is the function Login of the file /ajax.php. This manipulation of the argument email causes sql inje… | |
| CVE-2025-9752 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in D-Link DIR-852 1.00CN B09. Impacted is the function soapcgi_main of the file soap.cgi of the component SOAP Service. Such manipulation of the argument se… | |
| CVE-2025-9751 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Online Learning Management System 1.0. This issue affects some unknown processing of the file /login.php. This manipulation of the argument Username causes… | |
| CVE-2025-9750 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument Username… | |
| CVE-2025-9749 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in HKritesh009 Grocery List Management Web App up to f491b681eb70d465f445c9a721415c965190f83b. This affects an unknown part of the file /src/update.php. The manipulatio… | |
| CVE-2025-9744 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Online Loan Management System 1.0. The affected element is an unknown function of the file /ajax.php?action=login. Executing manipulation of the argument U… | |
| CVE-2025-9743 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. Impacted is an unknown function of the file login_attendance2.php. Performing manipulation of the argument e… | |
| CVE-2025-9740 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in code-projects Human Resource Integrated System 1.0. This affects an unknown part of the file /log_query.php. The manipulation of the argument ID results in sql injection.… | |
| CVE-2025-9739 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in Campcodes Online Water Billing System 1.0. Affected by this issue is some unknown functionality of the file /process.php. The manipulation of the argument Username l… | |
| CVE-2025-9733 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. This impacts an unknown function of the file /login_timeee.php. Performing manipulation of the argument emp_… | |
| CVE-2025-9730 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /ajax/updateProfile.php. The manipulation of the argument user_id re… | |
| CVE-2025-9729 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in PHPGurukul Online Course Registration 3.1. This vulnerability affects unknown code of the file /admin/student-registration.php. Performing manipulation of the argument… | |
| CVE-2025-9727 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in D-Link DIR-816L 206b01. Affected by this issue is the function soapcgi_main of the file /soap.cgi. This manipulation of the argument service causes os command inject… | |
| CVE-2025-9726 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /review.php. The manipulation of the argument pid r… | |
| CVE-2025-9706 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in SourceCodester Water Billing System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit.php. Such manipulation of the argum… | |
| CVE-2025-9705 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in SourceCodester Water Billing System 1.0. Affected is an unknown function of the file /paybill.php. This manipulation of the argument ID causes sql injection. Remote … | |
| CVE-2025-9704 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in SourceCodester Water Billing System 1.0. This impacts an unknown function of the file /viewbill.php. The manipulation of the argument ID results in sql injectio… | |
| CVE-2025-9702 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in SourceCodester Simple Cafe Billing System 1.0. This affects an unknown function of the file /sales_report.php. The manipulation of the argument month leads to sql in… | |
| CVE-2025-9701 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in SourceCodester Simple Cafe Billing System 1.0. The impacted element is an unknown function of the file /receipt.php. Executing manipulation of the argument ID can le… | |
| CVE-2025-9700 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in SourceCodester Online Book Store 1.0. This issue affects some unknown processing of the file /publisher_list.php. This manipulation of the argument pubid causes sql injection… | |
| CVE-2025-9699 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in SourceCodester Online Polling System Code 1.0. This vulnerability affects unknown code of the file /admin/checklogin.php. The manipulation of the argument myusername r… | |
| CVE-2025-9694 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in Campcodes Advanced Online Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/login.php. Executing manipulation of the a… | |
| CVE-2025-9692 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in Campcodes Online Shopping System 1.0. Affected is an unknown function of the file /product.php. Performing manipulation of the argument p results in sql injection. The at… | |
| CVE-2025-9691 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in Campcodes Online Shopping System 1.0. This impacts an unknown function of the file /login.php. Such manipulation of the argument Password leads to sql injection. The… | |
| CVE-2025-9679 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in itsourcecode Student Information System 1.0. This affects an unknown function of the file /course_edit1.php. Such manipulation of the argument ID leads t… | |
| CVE-2025-9678 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=delete_borrower. This manipulation of the argum… | |
| CVE-2025-9669 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in Jinher OA 1.0. This issue affects some unknown processing of the file GetTreeDate.aspx. The manipulation of the argument ID leads to sql injection. Remote exploitati… | |
| CVE-2025-9662 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in code-projects Simple Grading System 1.0. This affects an unknown function of the file /login.php of the component Admin Panel. Executing manipulation can lead to sql… | |
| CVE-2025-9660 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in SourceCodester Bakeshop Online Ordering System 1.0. The impacted element is an unknown function of the file /passwordrecover.php. Performing manipulation of the argument … | |
| CVE-2025-9645 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in itsourcecode Apartment Management System 1.0. This affects an unknown part of the file /t_dashboard/r_all_info.php. The manipulation of the argument mid leads to sql… | |
| CVE-2025-9644 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in itsourcecode Apartment Management System 1.0. Affected by this issue is some unknown functionality of the file /setting/bill_setup.php. Executing manipulation of the… | |
| CVE-2025-9643 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was found in itsourcecode Apartment Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /setting/utility_bill_setup.php. Performing manipulat… | |
| CVE-2025-9610 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in code-projects Online Event Judging System 1.0. This issue affects some unknown processing of the file /create_account.php. This manipulation of the argument fname ca… | |
| CVE-2025-9603 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Ho… | |
| CVE-2025-9601 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in itsourcecode Apartment Management System 1.0. This affects an unknown part of the file /setting/employee_salary_setup.php. The manipulation of the argument ddlEmpName … | |
| CVE-2025-9600 | critical | 9.8 | 9.8 | 9mo ago | A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. Affected by this issue is some unknown functionality of the file /setting/member_type_setup.php. The manipu… | |
| CVE-2025-9599 | critical | 9.8 | 9.8 | 9mo ago | A weakness has been identified in itsourcecode Apartment Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /setting/month_setup.php. Executing manipulation… | |
| CVE-2025-9598 | critical | 9.8 | 9.8 | 9mo ago | A security flaw has been discovered in itsourcecode Apartment Management System 1.0. Affected is an unknown function of the file /setting/year_setup.php. Performing manipulation of the argument txtXY… | |
| CVE-2025-9597 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was identified in itsourcecode Apartment Management System 1.0. This impacts an unknown function of the file /o_dashboard/rented_all_info.php. Such manipulation of the argument uid le… | |
| CVE-2025-9596 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an unknown function of the file /login.php. This manipulation of the argument User causes sql injection. It i… | |
| CVE-2025-9594 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /report/complain_info.php. The manipulation of the argument vid… | |
| CVE-2025-9593 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in itsourcecode Apartment Management System 1.0. Impacted is an unknown function of the file /report/unit_status_info.php. Executing manipulation of the argument usid can lead t… | |
| CVE-2025-9592 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /report/bill_info.php. Performing manipulation of the argument vid… | |
| CVE-2025-9582 | critical | 9.8 | 9.8 | 9mo ago | A flaw has been found in Comfast CF-N1 2.6.0. Affected is the function ntp_timezone of the file /usr/bin/webmgnt. Executing manipulation of the argument timestr can lead to command injection. The att… | |
| CVE-2025-9581 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability was detected in Comfast CF-N1 2.6.0. This impacts the function multi_pppoe of the file /usr/bin/webmgnt. Performing manipulation of the argument phy_interface results in command injec… | |
| CVE-2025-34523 | critical | 9.8 | 9.8 | 9mo ago | A heap-based buffer overflow vulnerability exists in the network-facing input handling routines of Arcserve Unified Data Protection (UDP). This flaw is reachable without authentication and results fr… | |
| CVE-2025-9533 | critical | 9.8 | 9.8 | 9mo ago | A vulnerability has been found in TOTOLINK T10 4.1.8cu.5241_B20210927. Affected is an unknown function of the file /formLoginAuth.htm. The manipulation of the argument authCode with the input 1 leads… |