0.0
CVE-2025-54432 -
This CVE is a duplicate of another CVE. See CVE-2018-25031 and CVE-2021-46708.
0.0
CVE-2025-54420 -
This CVE is a duplicate of CVE-2025-8129.
5.3
CVE-2025-7944 - PHPGurukul Taxi Stand Management System search.php cross site scripting
A vulnerability was found in PHPGurukul Taxi Stand Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /search.php. The manipulation of the argument searchdata leads to cross site scripting. It is possible to initiate the attack remotely. The exploβ¦
5.3
CVE-2025-7943 - PHPGurukul Taxi Stand Management System search-autoortaxi.php cross site scripting
A vulnerability was found in PHPGurukul Taxi Stand Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/search-autoortaxi.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be launcheβ¦
4.4
CVE-2025-7486 - Ebook Store <= 5.8012 - Authenticated (Administrator+) Stored Cross-Site Scripting via Order Details
The Ebook Store plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Order Details in all versions up to, and including, 5.8012 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inβ¦
5.1
CVE-2025-7942 - PHPGurukul Taxi Stand Management System admin-profile.php cross site scripting
A vulnerability has been found in PHPGurukul Taxi Stand Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be lβ¦
5.1
CVE-2025-7941 - PHPGurukul Time Table Generator System profile.php cross site scripting
A vulnerability, which was classified as problematic, was found in PHPGurukul Time Table Generator System 1.0. Affected is an unknown function of the file /admin/profile.php. The manipulation of the argument adminname leads to cross site scripting. It is possible to launch the attack remotely. The β¦
4.8
CVE-2025-7940 - Genshin Albedo Cat House App com.house.auscat AndroidManifest.xml improper export of android applicβ¦
A vulnerability was found in Genshin Albedo Cat House App 1.0.2 on Android. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.house.auscat. The manipulation leads to improper export of android applicaβ¦
7.1
CVE-2025-54134 - HAX CMS NodeJs's Improper Error Handling Leads to Denial of Service
HAX CMS NodeJs allows users to manage their microsite universe with a NodeJs backend. In versions 11.0.8 and below, the HAX CMS NodeJS application crashes when an authenticated attacker provides an API request lacking required URL parameters. This vulnerability affects the listFiles and saveFiles eβ¦
4.3
CVE-2025-54129 - HAXiam allows for User Enumeration
HAXiam is a packaging wrapper for HAXcms which allows anyone to spawn their own microsite management platform. In versions 11.0.4 and below, the application returns a 200 response when requesting the data of a valid user and a 404 response when requesting the data of an invalid user. This can be usβ¦