5.1
CVE-2025-8501 - code-projects Human Resource Integrated System action.php cross site scripting
A vulnerability classified as problematic has been found in code-projects Human Resource Integrated System 1.0. Affected is an unknown function of the file /insert-and-view/action.php. The manipulation of the argument content leads to cross site scripting. It is possible to launch the attack remoteβ¦
5.3
CVE-2025-8500 - code-projects Human Resource Integrated System action.php sql injection
A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. β¦
6.9
CVE-2025-8499 - code-projects Online Medicine Guide cusfindambulence2.php sql injection
A vulnerability was found in code-projects Online Medicine Guide 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /cusfindambulence2.php. The manipulation of the argument Search leads to sql injection. The attack can be initiated remotely. The exploit has bβ¦
6.9
CVE-2025-8498 - code-projects Online Medicine Guide index.php sql injection
A security vulnerability has been detected in code-projects Online Medicine Guide 1.0. This vulnerability affects unknown code of the file /cart/index.php. Such manipulation of the argument uname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly anβ¦
6.9
CVE-2025-8497 - code-projects Online Medicine Guide cusfindphar2.php sql injection
A weakness has been identified in code-projects Online Medicine Guide 1.0. This affects an unknown part of the file /cusfindphar2.php. This manipulation of the argument Search causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and β¦
6.9
CVE-2025-8496 - projectworlds Online Admission System viewform.php sql injection
A vulnerability has been found in projectworlds Online Admission System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /viewform.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit β¦
6.9
CVE-2025-8495 - code-projects Intern Membership Management System edit_admin_query.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Intern Membership Management System 1.0. Affected is an unknown function of the file /admin/edit_admin_query.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotβ¦
8.9
CVE-2025-54351 - iperf3: iperf Buffer Overflow
In iperf before 3.19.1, net.c has a buffer overflow when --skip-rx-copy is used (for MSG_TRUNC in recv).
3.2
CVE-2025-54956 -
The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the corresponding HTTP request.
6.4
CVE-2025-52131 -
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field.