Sort by: Updated/Published

Filtred: Only with CWE
Risk Topic & Details
2025-03-10
Med.
JUX Real Estate 3.4.0 - SQL Injection
 CVE CWE Remote CraCkEr
Low
JUX Real Estate 3.4.0 - Multiple RXSS
 CVE CWE Remote CraCkEr
2025-02-27
Med.
Library-Card-System V 1.0 | Add Picture/Signature - signup.php | Unrestricted File Upload | Found By Maloy Roy Orko
 CVE CWE Remote Maloy Roy Orko
Med.
Needyamin | Library-Card-System 1.0 | card.php?id= SQL Injection | Found By Maloy Roy Orko
 CVE CWE Remote Maloy Roy Orko
2025-02-24
Low
needyamin Library Card System Registration Page signup.php cross site scripting
 CVE CWE Remote Maloy Roy Orko
Low
Image_Gallery | Add Gallery- admin/gallery.php | Unrestricted File Upload | Found By Maloy Roy Orko
 CVE CWE Remote Maloy Roy Orko
Low
Image_Gallery | view.php?username= | Cross Site Scripting (Reflected XSS) | Found By Maloy Roy Orko
 CVE CWE Remote Maloy Roy Orko
Med.
Library-Card-System | SQL Injection Admin Login Bypass In admin.php | Found By Maloy Roy Orko
 CVE CWE Remote Maloy Roy Orko
2025-01-25
Med.
Iranian Cyber Police "FATA.GOV.IR" has an SQL Injection vulnerability
 CWE Remote E1.Coders
2025-01-14
Low
FSB: FOR and AGAINST XSS Vulnerability
 CVE CWE Remote 0x01369
2025-01-12
Med.
Ecommerce-PHP-kurniaramadhan-1.0- Stored Cross Site Scripting
 CVE CWE Remote Maloy Roy Orko
2025-01-05
Low
VULNERABILITY: Website Iranian goverment admin find and Automatic Bypassing 0day attacker
 CWE Remote E1.Coders
2025-01-02
Low
Sysax Multi Server 6.99 Cross Site Scripting
 CWE Remote Yehia Elghaly
High
CyberPanel upgrademysqlstatus Arbitrary Command Execution
 CWE Remote Cyber
2024-12-18
Med.
Laravel 11.0 Cross Site Scripting
 CWE Remote E1.Coders
2024-12-10
Low
SEH utnserver Pro 20.1.22 Cross Site Scripting
 CVE CWE Remote P. Riedl
2024-12-09
Low
Omada Identity Cross Site Scripting
 CVE CWE Remote Daniel Hirschberger
2024-12-05
High
Siemens Unlocked JTAG Interface / Buffer Overflow
 CVE CWE Local Stefan Viehboeck
Med.
Convoy CMS SQL injection 24.5
 CVE CWE Remote E1.Coders
2024-12-03
Low
Russian FSB Cross Site Scripting
 CWE Local E1.Coders
2024-11-28
Med.
needrestart Local Privilege Escalation
 CVE CWE Local Qualys Security Adviso...
2024-11-25
Med.
Linux 6.6 Race Condition
 CVE CWE Local Jann Horn
Low
fronsetia 1.1 Cross Site Scripting
 CWE Remote Andrey Stoykov
Med.
Korenix JetPort 5601 1.2 Path Traversal
 CVE CWE Remote Hierzer
2024-11-17
Low
Calibre-web 0.6.21 Stored XSS
 CVE CWE Remote Pentest-Tools
2024-11-14
Med.
TX Text Control .NET Server For ASP.NET Arbitrary File Read / Write
 CWE Local Filip Palian
Med.
Siemens Energy Omnivise T3000 8.2 SP3 Privilege Escalation / File Download
 CVE CWE Local Andreas Kolbeck
2024-11-12
Med.
TestRail CLI FieldsParser eval Injection
 CWE Remote Devin
2024-11-02
High
Xlibre Xnest 24.1.0 / 24.2.0 Buffer Overflow
 CVE CWE Local Enrico Weigelt
Med.
SmartAgent 1.1.0 SQL Injection
 CWE Remote Alter Prime
2024-10-29
Low
Booked Scheduler 2.8.5 Cross Site Scripting / Open Redirection
 CWE Remote Andrey Stoykov
2024-10-28
Med.
Lawo AG vsm LTC Time Sync Path Traversal
 CVE CWE Remote Sandro Einfeldt
2024-10-25
Low
SofaWiki 3.9.2 Cross Site Scripting
 CWE Remote Chokri Hammedi
High
SofaWiki 3.9.2 Shell Upload
 CWE Remote Chokri Hammedi
Med.
LifterLMS - Blind SQL Injection
 CVE CWE Remote FURKAN KARAARSLAN
2024-10-23
Low
IBM Security Verify Access 10.0.8 Open Redirection
 CVE CWE Remote Giulio Garzia
Med.
ABB Cylon Aspect 3.08.01 persistenceManagerAjax.php Command Injection
 CWE Remote LiquidWorm
High
ABB Cylon Aspect 3.08.01 databaseFileDelete.php Command Injection
 CWE Remote LiquidWorm
2024-10-16
Med.
Ultra Mini HTTPd 1.21 - POST - Denial of Service (DoS)
 CWE Remote Fagner Lima - Aka r3ng...
2024-10-13
Med.
VICIdial 2.14-917a SQL Injection
 CVE CWE Remote Jaggar Henry
Med.
WordPress LMS 4.2.7 SQL Injection
 CVE CWE Remote Avento
Med.
Netman 204 4.05 SQL Injection / Unauthenticated Password Reset
 CVE CWE Remote T. Weber
2024-10-08
Med.
PHP-Nuke Top Module SQL Injection
 CWE Remote Emiliano Febbi
2024-10-07
Low
Book Recording App 2024-09-24 Cross Site Scripting
 CWE Remote Arif Ari
Med.
ManageEngine ADManager Plus Privilege Escalation
 CVE CWE Remote Metin Yunus Kandemir
2024-10-05
High
MD-Pro 1.0.76 Shell Upload / SQL Injection
 CWE Remote Emiliano Febbi
2024-10-02
Med.
Nitro PDF Pro Local Privilege Escalation
 CVE CWE Local Sandro Einfeldt
Low
SeedDMS 6.0.28 Cross Site Scripting
 CVE CWE Remote Marco Nappi
Med.
reNgine 2.2.0 Command Injection (Authenticated)
 CWE Remote Caner Tercan
2024-09-26
Low
Elaine's Realtime CRM Automation 6.18.17 Cross Site Scripting
 CVE CWE Remote Haythem Arfaoui
2024-09-24
Med.
Apple iOS 17.2.1 Screen Time Passcode Retrieval / Mitigation Bypass
 CWE Local SivertPL
Low
Elaine's Realtime CRM Automation 6.18.17 Cross Site Scripting
 CVE CWE Remote Haythem Arfaoui
2024-09-18
Med.
Microsoft Windows TOCTOU Local Privilege Escalation
 CVE CWE Local jheysel-r7
2024-09-16
High
MPlayer Lite r33064 Buffer Overflow
 CWE Local h1ch4m
2024-09-10
Med.
C-MOR Video Surveillance 5.2401 Path Traversal
 CVE CWE Remote Matthias Deeg
Med.
C-MOR Video Surveillance 5.2401 / 6.00PL01 SQL Injection
 CVE CWE Remote Matthias Deeg
2024-09-08
Low
FortiSiem 7.1.3 Stored XSS
 CWE Remote Local Ersin Sarisoy
2024-09-03
Med.
VICIdial Multiple Authenticated SQL Injection
 CWE Remote h00die
Med.
TVT NVMS-1000 Directory Traversal
 CWE Local Dhiraj Mishra
Med.
Vivavis HIGH-LEIT 4 / 5 Privilege Escalation
 CVE CWE Local Lukas Krieg
Copyright 2025, cxsecurity.com

 

Back to Top