InfoSec News & Tutorials
NAME__________Online Pizza Ordering System /php-opos/index.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /php-opos/index.php…
NAME__________Human Resource Management System /hrm/controller/login.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Human Resource Management System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /hrm/controller/login.php…
NAME__________Online Pizza Ordering System /php-opos/index.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /php-opos/index.php…
NAME__________Human Resource Management System /hrm/controller/login.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Human Resource Management System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /hrm/controller/login.php…
NAME__________NETGEAR Orbi WiFi Systems command executionPlatforms Affected:NETGEAR RBR750 NETGEAR RBS750 NETGEAR RBR840 NETGEAR RBS840 NETGEAR RBR850 NETGEAR RBS850 NETGEAR RBRE960 NETGEAR RBSE960 NETGEAR RBRE950 NETGEAR RBSE950Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi…
NAME__________NETGEAR Orbi WiFi Systems command executionPlatforms Affected:NETGEAR RBR750Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi WiFi Systems could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a…
NAME__________NETGEAR Orbi WiFi Systems information disclosurePlatforms Affected:NETGEAR RBR750 NETGEAR RBS750 NETGEAR RBR840 NETGEAR RBS840 NETGEAR RBR850 NETGEAR RBS850 NETGEAR RBRE960 NETGEAR RBSE960 NETGEAR RBRE950 NETGEAR RBSE950Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi…
NAME__________Human Resource Management System /hrm/controller/login.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Human Resource Management System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /hrm/controller/login.php…
NAME__________Online Pizza Ordering System /php-opos/index.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /php-opos/index.php…
NAME__________Export User plugin for MyBB cross-site scriptingPlatforms Affected:Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Export User plugin for MyBB is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Edit…
NAME__________Python CGI module cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Python CGI module is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability…
NAME__________Human Resource Management System /hrm/controller/login.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Human Resource Management System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /hrm/controller/login.php…
NAME__________Online Pizza Ordering System /php-opos/index.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /php-opos/index.php…
NAME__________Best Online News Portal search.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Best Online News Portal is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to search.php using…
NAME__________Human Resource Management System /hrm/controller/login.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Human Resource Management System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /hrm/controller/login.php…
NAME__________Online Pizza Ordering System /php-opos/index.php SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the /php-opos/index.php…
NAME__________Medicine Tracker System page cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Medicine Tracker System is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the /php-mts/ endpoint. A remote…
NAME__________Music Gallery Site page cross-site scriptingPlatforms Affected:Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Music Gallery Site is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the /php-music/admin/ endpoint. A remote…
NAME__________Yoga Class Registration System cid SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Yoga Class Registration System is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements using the cid…
NAME__________Yoga Class Registration System page cross-site scriptingPlatforms Affected:Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Yoga Class Registration System is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the /php-ycrs/ endpoint.…
NAME__________Drupal Core information disclosurePlatforms Affected:Drupal Drupal 9.4.11 Drupal Drupal 9.5.4 Drupal Drupal 10.0.4Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Drupal Core could allow a remote attacker to obtain sensitive information, caused by a flaw…
NAME__________Unity Technologies Unity code executionPlatforms Affected:Unity Technologies UnityRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Unity Technologies Unity could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write…
NAME__________Responsive media Image Formatter module for Drupal unspecifiedPlatforms Affected:Drupal Responsive media Image Formatter module for Drupal 1.0.0Risk Level:6.5Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified flaw in Responsive media Image Formatter module for Drupal has…
NAME__________Unity Technologies Unity buffer overflowPlatforms Affected:Unity Technologies UnityRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Unity Technologies Unity is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the parsing of FBX…