CVEs from 2025
Total
8,826
critical
critical 1,315
high
high 1,968
medium
medium 1,973
low
low 201
% Critical
14.9%
% with KEV
2.1%
% with exploit
2.8%
Top vendors
- qualcomm 1,123
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- redhat 108
- microsoft 107
- portabilis 94
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- gcp 29
- inventory_management_system 28
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-11511 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of the argument supp_email can lead to sql i… | |||
| CVE-2025-11509 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/product_add.php. Performing manipulation of the argument prod_name results in… | |||
| CVE-2025-11508 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unr… | |||
| CVE-2025-11507 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in PHPGurukul Beauty Parlour Management System 1.1. The impacted element is an unknown function of the file /admin/search-invoices.php. This manipulation of the argumen… | |||
| CVE-2025-11506 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/search-appointment.php. The manipulation of the … | |||
| CVE-2025-11505 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. Impacted is an unknown function of the file /admin/new-appointment.php. The manipulation of the argument delid leads… | |||
| CVE-2025-11503 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in PHPGurukul Beauty Parlour Management System 1.1. This issue affects some unknown processing of the file /admin/manage-services.php. Executing a manipulation of the a… | |||
| CVE-2025-11491 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element is the function CommandManager of the file src/command-manager.ts. Performing manipulation results in … | |||
| CVE-2025-11490 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute P… | |||
| CVE-2025-11487 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in SourceCodester Farm Management System 1.0. Affected by this issue is some unknown functionality of the file /uploadProduct.php. Performing manipulation of the a… | |||
| CVE-2025-11486 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in SourceCodester Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /buyNow.php. Such manipulation of the argument Name… | |||
| CVE-2025-11481 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donate_bloo… | |||
| CVE-2025-11480 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /register.php. Performing manipulation of the argument register… | |||
| CVE-2025-11479 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in SourceCodester Wedding Reservation Management System 1.0. Impacted is the function insertReservation of the file function.php. Such manipulation of the a… | |||
| CVE-2025-11477 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in SourceCodester Wedding Reservation Management System 1.0. This vulnerability affects unknown code of the file /global.php. The manipulation of the argument User… | |||
| CVE-2025-11476 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument login_username leads to sql inj… | |||
| CVE-2025-11475 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /view_member.php. Executing a manipulation of … | |||
| CVE-2025-11474 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit_booking.php. Performing manipulation of… | |||
| CVE-2025-11473 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected is an unknown function of the file /edit_curr.php. Such manipulation of the argument currsymbol leads … | |||
| CVE-2025-11472 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in SourceCodester Hotel and Lodge Management System 1.0. This impacts an unknown function of the file /edit_room.php. This manipulation of the argument ID causes sql injection. … | |||
| CVE-2025-11471 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown function of the file /edit_customer.php. The manipulation of the argument ID results in s… | |||
| CVE-2025-11469 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /pages/save_customer.php. Executing manipulation of the… | |||
| CVE-2025-11434 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing a manipulation of the argument uname can lea… | |||
| CVE-2025-11432 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in itsourcecode Leave Management System 1.0. This affects an unknown function of the file /reset.php. Such manipulation of the argument employid leads to sql injection.… | |||
| CVE-2025-11431 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. The impacted element is an unknown function of the file /transaction.php. This manipulation of the argument sho… | |||
| CVE-2025-11430 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql … | |||
| CVE-2025-11424 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lea… | |||
| CVE-2025-11422 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in Campcodes Advanced Online Voting Management System 1.0. The impacted element is an unknown function of the file /admin/login.php. Such manipulation of the argument U… | |||
| CVE-2025-11420 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/edit_order_details.php. The manipulation of the argument order_id results in s… | |||
| CVE-2025-11416 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/invoices.php. Performing a manipulation of the argument delid r… | |||
| CVE-2025-11415 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. Affected by this issue is some unknown functionality of the file /admin/customer-list.php. Such manipulation of the … | |||
| CVE-2025-11407 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in D-Link DI-7001 MINI 24.04.18B1. Impacted is an unknown function of the file /upgrade_filter.asp. This manipulation of the argument path causes os command injection. … | |||
| CVE-2025-11405 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in SourceCodester Hotel and Lodge Management System 1.0. This vulnerability affects unknown code of the file /del_tax.php. The manipulation of the argument ID leads to … | |||
| CVE-2025-11404 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown part of the file /pages/save_tax.php. Executing manipulation of the argument percentage… | |||
| CVE-2025-11403 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this issue is some unknown functionality of the file /del_booking.php. Performing manipulation of the ar… | |||
| CVE-2025-11402 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /del_curr.php. Such manipulation of the … | |||
| CVE-2025-11401 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in SourceCodester Hotel and Lodge Management System 1.0. Affected is an unknown function of the file /pages/save_curr.php. This manipulation of the argument currcode causes sql … | |||
| CVE-2025-11400 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in SourceCodester Hotel and Lodge Management System 1.0. This impacts an unknown function of the file /del_room.php. The manipulation of the argument ID results in sql in… | |||
| CVE-2025-11399 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown function of the file /pages/save_room.php. The manipulation of the argument… | |||
| CVE-2025-11397 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /login.php. Performing manipulation of the argumen… | |||
| CVE-2025-11396 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in code-projects Simple Food Ordering System 1.0. Impacted is an unknown function of the file /product.php. Such manipulation of the argument Category leads to sql inje… | |||
| CVE-2025-11354 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects Online Hotel Reservation System 1.0. Affected is an unknown function of the file /admin/addslideexec.php. Executing manipulation of the argument image can lead … | |||
| CVE-2025-11350 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Campcodes Online Apartment Visitor Management System 1.0. The affected element is an unknown function of the file /bwdates-reports-details.php. The manipulation… | |||
| CVE-2025-11349 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Campcodes Online Apartment Visitor Management System 1.0. Impacted is an unknown function of the file /search-visitor.php. The manipulation of the argument searchdat… | |||
| CVE-2025-11348 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Campcodes Online Apartment Visitor Management System 1.0. This issue affects some unknown processing of the file /index.php. Executing a manipulation of the argument… | |||
| CVE-2025-11347 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in code-projects Student Crud Operation up to 3.3. This vulnerability affects the function move_uploaded_file of the file add.php of the component Add Student Page/Edit Stud… | |||
| CVE-2025-11342 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in code-projects Online Course Registration 1.0. This impacts an unknown function of the file /admin/edit-course.php. Executing manipulation of the argument coursecode … | |||
| CVE-2025-11341 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Jinher OA up to 2.0. This affects an unknown function of the file /c6/Jhsoft.Web.module/eformaspx/WebDesign.aspx/?type=SystemUserInfo&style=1. Performing manipu… | |||
| CVE-2025-11334 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Campcodes Online Apartment Visitor Management System 1.0. Affected is an unknown function of the file /visitor-detail.php. The manipulation of the argument edit… | |||
| CVE-2025-11329 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects Online Course Registration 1.0. Impacted is an unknown function of the file /admin/manage-students.php. This manipulation of the argument ID causes sql injectio… | |||
| CVE-2025-11318 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This vulnerability affects unknown code of the file uploadWxFile.do. The manipulation of the … | |||
| CVE-2025-11317 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This affects the function findRolePage of the file findSingConfigPage.do. The manipulation of the … | |||
| CVE-2025-11316 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected by this issue is the function findCategoryPage of the file findCategoryPage.do. Executing… | |||
| CVE-2025-11315 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected by this vulnerability is the function findUserPage of the file findUserPage.do. Performing man… | |||
| CVE-2025-11314 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected is the function findRolePage of the file findSingConfigPage.do. Such manipulation of the … | |||
| CVE-2025-11313 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This impacts the function findRolePage of the file findRolePage.do. This manipulation of the argument sort … | |||
| CVE-2025-11312 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This affects the function findModulePage of the file findModulePage.do. The manipulation of the argu… | |||
| CVE-2025-11311 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. The impacted element is the function findTenantPage of the file findTenantPage.do. The… | |||
| CVE-2025-11310 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. The affected element is the function findFileServerPage of the file findFileServerPage.do. Executi… | |||
| CVE-2025-11309 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Impacted is the function doFilter of the file findDeptPage.do. Performing manipulation of the… | |||
| CVE-2025-11287 | critical | 9.8 | 9.8 | 8mo ago | MCPHub has an Improper Authorization vulnerability via its handleSseConnection function | |||
| CVE-2025-56513 | critical | 9.8 | 9.8 | 8mo ago | NiceHash QuickMiner 6.12.0 perform software updates over HTTP without validating digital signatures or hash checks. An attacker capable of intercepting or redirecting traffic to the update url and ca… | |||
| CVE-2025-11140 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this vulnerability is the function openForm of the component com.artery.richclient.RichClientService. Such manipulation of … | |||
| CVE-2025-11139 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Bjskzy Zhiyou ERP up to 11.0. Affected is the function uploadStudioFile of the component com.artery.form.services.FormStudioUpdater. This manipulation of the argumen… | |||
| CVE-2025-11118 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in CodeAstro Student Grading System 1.0. This issue affects some unknown processing of the file /adminLogin.php. Such manipulation of the argument staffId leads to sql … | |||
| CVE-2025-11116 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /add.home.php. The manipulation of the argument faculty results in sql injection. The… | |||
| CVE-2025-11115 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in code-projects Simple Scheduling System 1.0. Affected by this issue is some unknown functionality of the file /addtime.php. The manipulation of the argument starttime… | |||
| CVE-2025-11111 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in Campcodes Advanced Online Voting Management System 1.0. This affects an unknown function of the file /admin/candidates_edit.php. This manipulation of the argument ID… | |||
| CVE-2025-11110 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Campcodes Online Learning Management System 1.0. The impacted element is an unknown function of the file /admin/school_year.php. The manipulation of the argumen… | |||
| CVE-2025-11109 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/us_edit.php?action=edit. The manipulation of the ar… | |||
| CVE-2025-11108 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in code-projects Simple Scheduling System 1.0. Impacted is an unknown function of the file /schedulingsystem/addroom.php. Executing manipulation of the argument room ca… | |||
| CVE-2025-11107 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in code-projects Simple Scheduling System 1.0. This issue affects some unknown processing of the file /schedulingsystem/addcourse.php. Performing manipulation of the argumen… | |||
| CVE-2025-11106 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in code-projects Simple Scheduling System 1.0. This vulnerability affects unknown code of the file /schedulingsystem/addfaculty.php. Such manipulation of the argument f… | |||
| CVE-2025-11105 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /schedulingsystem/addsubject.php. This manipulation of the argument subcode causes sql in… | |||
| CVE-2025-11102 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /admin/edit_content.php. Executing manipulation of the argument Title ca… | |||
| CVE-2025-11101 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in itsourcecode Open Source Job Portal 1.0. This impacts an unknown function of the file /jobportal/admin/company/index.php?view=edit. Performing manipulation of t… | |||
| CVE-2025-11094 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/admin_product_details.php. Such manipulation of the argument prod_i… | |||
| CVE-2025-11089 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. This impacts an unknown function of the file /Profilers/PriProfile/COUNT3s4.php. Executi… | |||
| CVE-2025-11077 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /admin/add_content.php. Executing manipulation of the argument Title can… | |||
| CVE-2025-11076 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in Campcodes Online Learning Management System 1.0. This impacts an unknown function of the file /admin/edit_teacher.php. Performing manipulation of the argument department … | |||
| CVE-2025-11075 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in Campcodes Online Learning Management System 1.0. This affects an unknown function of the file /admin/de_activate.php. Such manipulation of the argument ID leads to s… | |||
| CVE-2025-11074 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects Project Monitoring System 1.0. The impacted element is an unknown function of the file /login.php. This manipulation of the argument username/password causes sq… | |||
| CVE-2025-11070 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cart_add.php. Such manipulation of the argument ID leads to sql injection. … | |||
| CVE-2025-11066 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/bidlist.php. Executing manipulation of the argument ID can lead to sql in… | |||
| CVE-2025-11064 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Campcodes Online Learning Management System 1.0. Impacted is an unknown function of the file /admin/teachers.php. The manipulation of the argument department re… | |||
| CVE-2025-11063 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in Campcodes Online Learning Management System 1.0. This issue affects some unknown processing of the file /admin/edit_department.php. The manipulation of the argument … | |||
| CVE-2025-11062 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/save_student.php. Executing manipulation of the argument … | |||
| CVE-2025-11061 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was found in Campcodes Online Learning Management System 1.0. This affects an unknown part of the file /admin/edit_student.php. Performing manipulation of the argument cys results in … | |||
| CVE-2025-11057 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in SourceCodester Pet Grooming Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/print_inv.php. Such manipulation of the … | |||
| CVE-2025-11056 | critical | 9.8 | 9.8 | 8mo ago | A flaw has been found in ProjectsAndPrograms School Management System 1.0. Affected by this vulnerability is an unknown functionality of the file owner_panel/fetch-data/select-students.php. This mani… | |||
| CVE-2025-11055 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in SourceCodester Online Hotel Reservation System 1.0. Affected is an unknown function of the file /admin/updateaddress.php. The manipulation of the argument address resu… | |||
| CVE-2025-11053 | critical | 9.8 | 9.8 | 8mo ago | A weakness has been identified in PHPGurukul Small CRM 4.0. This affects an unknown function of the file /forgot-password.php. Executing manipulation of the argument email can lead to sql injection. … | |||
| CVE-2025-11052 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in kidaze CourseSelectionSystem 1.0/5.php. The impacted element is an unknown function of the file /Profilers/PriProfile/COUNT3s5.php. Performing manipulation of t… | |||
| CVE-2025-11046 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl … | |||
| CVE-2025-11040 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was detected in code-projects Hostel Management System 1.0. Affected by this issue is some unknown functionality of the file /justines/admin/mod_users/index.php?view=view. The manipul… | |||
| CVE-2025-11039 | critical | 9.8 | 9.8 | 8mo ago | A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/us_edit1.php. The manipu… | |||
| CVE-2025-11037 | critical | 9.8 | 9.8 | 8mo ago | A security flaw has been discovered in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/admin_index_search.php. Performing manipulation of the argument Search… | |||
| CVE-2025-11036 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was identified in code-projects E-Commerce Website 1.0. This affects an unknown function of the file /pages/admin_account_update.php. Such manipulation of the argument user_id leads t… | |||
| CVE-2025-11035 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability was determined in Jinher OA 2.0. The impacted element is an unknown function of the file /c6/Jhsoft.Web.module/ToolBar/ManageWord.aspx/?text=GetUrl&style=1. This manipulation causes x… | |||
| CVE-2025-11033 | critical | 9.8 | 9.8 | 8mo ago | A vulnerability has been found in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. Impacted is an unknown function of the file /Profilers/PriProfile/COUNT3s7.php. The mani… |