7.3
CVE-2024-51767 -
An authentication bypass vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.
4.8
CVE-2025-7618 - A stored Cross-Site Scripting (XSS) vulnerability exists in the File Explorer and Text Editor of ADM
A stored Cross-Site Scripting (XSS) vulnerability vulnerability was found in the File Explorer and Text Editor of ADM. An attacker could exploit this vulnerability to inject malicious scripts into the applications, which may then access cookies or other sensitive information retained by the browserβ¦
6.9
CVE-2025-7595 - code-projects Job Diary view-cad.php sql injection
A vulnerability was found in code-projects Job Diary 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /view-cad.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the publβ¦
6.9
CVE-2025-7594 - code-projects Job Diary view-emp.php sql injection
A vulnerability was found in code-projects Job Diary 1.0. It has been classified as critical. This affects an unknown part of the file /view-emp.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the pubβ¦
6.9
CVE-2025-7593 - code-projects Job Diary view-all.php sql injection
A vulnerability was found in code-projects Job Diary 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /view-all.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to theβ¦
5.3
CVE-2025-7592 - PHPGurukul Dairy Farm Shop Management System invoices.php sql injection
A vulnerability has been found in PHPGurukul Dairy Farm Shop Management System 1.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file invoices.php. The manipulation of the argument del leads to sql injection. The attack can be launched remotely. The eβ¦
8.7
CVE-2024-26293 - Unauthenticated Path Traversal affecting Avid NEXIS
The Avid Nexis Agent uses a vulnerable gSOAP version. An undocumented vulnerability impacting gSOAP v2.8 makes the application vulnerable to an Unauthenticated Path Traversal vulnerability. This issue affects Avid NEXIS E-series: before 2025.5.1; Avid NEXIS F-series: before 2025.5.1; Avid NEXIS PROβ¦
8.8
CVE-2025-53689 - Apache Jackrabbit: XXE vulnerability in jackrabbit-spi-commons
Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit < 2.23.2 due to usage of an unsecured document build to load privileges. Users are recommended to upgrade to versions 2.20.17 (Java 8), 2.22.1 (Java 11) or 2.23.2 (Java 11, beta versions), which fix this iβ¦
5.3
CVE-2025-7591 - PHPGurukul Dairy Farm Shop Management System view-invoice.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file view-invoice.php. The manipulation of the argument invid leads to sql injection. It is possible to launch the attack remotely. The exploit haβ¦
5.3
CVE-2025-7590 - PHPGurukul Dairy Farm Shop Management System edit-category.php sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Dairy Farm Shop Management System 1.3. This issue affects some unknown processing of the file edit-category.php. The manipulation of the argument categorycode leads to sql injection. The attack may be initiated remotelyβ¦