5.3
CVE-2025-5657 - PHPGurukul Complaint Management System manage-users.php sql injection
A vulnerability was found in PHPGurukul Complaint Management System 2.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/manage-users.php. The manipulation of the argument uid leads to sql injection. The attack may be initiated remotely. The exploit has β¦
8.8
CVE-2011-10007 - File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encoβ¦
File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted filename. A file handle is opened with the 2 argument form of `open()` allowing an attacker controlled filename to provide the MODE parameter to `open()`, turning the filename into aβ¦
5.3
CVE-2025-5656 - PHPGurukul Complaint Management System edit-category.php sql injection
A vulnerability was found in PHPGurukul Complaint Management System 2.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-category.php. The manipulation of the argument description leads to sql injection. The attack can be initiated remotely. The expβ¦
6.4
CVE-2025-5341 - Forminator <= 1.44.1 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via id anβ¦
The Forminator Forms β Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the βid' and 'data-sizeβ parameters in all versions up to, and including, 1.44.1 due to insufficient input sanitization and output escaping. This makes it poβ¦
8.8
CVE-2025-5701 - HyperComments <= 1.2.2 - Unauthenticated (Subscriber+) Arbitrary Options Update
The HyperComments plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hc_request_handler function in all versions up to, and including, 1.2.2. This makes it possible for unauthenticated attackers to uβ¦
5.3
CVE-2025-5655 - PHPGurukul Complaint Management System edit-subcategory.php sql injection
A vulnerability was found in PHPGurukul Complaint Management System 2.0. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument subcategory leads to sql injection. It is possible to initiate the attack remotely. Theβ¦
5.3
CVE-2025-5654 - PHPGurukul Complaint Management System edit-state.php sql injection
A vulnerability was found in PHPGurukul Complaint Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-state.php. The manipulation of the argument description leads to sql injection. The attack may be launched remotely. The eβ¦
5.3
CVE-2025-5653 - PHPGurukul Complaint Management System between-date-userreport.php sql injection
A vulnerability has been found in PHPGurukul Complaint Management System 2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/between-date-userreport.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack canβ¦
9.3
CVE-2025-4568 - SQL Injection in 2ClickPortal
Improper neutralization of input provided by an unauthorized user into changes__reference_id parameter in URL allows for boolean-based Blind SQL Injection attacks.
5.3
CVE-2025-5652 - PHPGurukul Complaint Management System between-date-complaintreport.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Complaint Management System 2.0. Affected is an unknown function of the file /admin/between-date-complaintreport.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to launch the attaβ¦