[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CNA 2025

VulDB is an officially certified CVE Numbering Authority (CNA) by MITRE and Authorized Data Publisher (ADP) by NIST NVD. We are authorized to handle new vulnerability submissions, assign unique CVEs and disclose them. CVE is an international program to discover vulnerabilities which are then assigned and published to the CVE list. Partners coordinate such CVE entries to communicate consistent descriptions. Information technology and cybersecurity professionals all around the world use CVE records to ensure they are discussing the same issues, and to coordinate their efforts to prioritize and address these properly.

Fournisseur

code-projects34
leiyuxi4
Codezips4
Campcodes4
CampCodes3

Produit

code-projects Point of Sales and Inventory Managem ...9
code-projects Online Book Shop7
code-projects Online Shoe Store5
leiyuxi cy-fast4
Tsinghua Unigroup Electronic Archives System3

Contre-mesures

Official Fix1
Temporary Fix0
Workaround1
Unavailable0
Not Defined63

Exploitabilité

High0
Functional0
Proof-of-Concept64
Unproven0
Not Defined1

Vecteur d'accès

Not Defined0
Physical0
Local3
Adjacent1
Network61

Authentification

Not Defined0
High6
Low50
None9

Interaction de l'utilisateur

Not Defined0
Required9
None56

VulDB

≤10
≤20
≤33
≤46
≤56
≤67
≤736
≤86
≤91
≤100

Exploiter 0 jour

<1k12
<2k40
<5k13
<10k0
<25k0
<50k0
<100k0
≥100k0
IDVulnérabilitéScopeResponsibleSoumissionÉtabliMise à jourCVESubmitCNA
290862Tenda AC6 GetParentControlInfo buffer overflowVulDBVulDB08/01/202508/01/202508/01/2025CVE-2025-0349477048
accepté
290861CampCodes DepEd Equipment Inventory System add_employee.php cross site scriptingVulDBVulDB08/01/202508/01/202508/01/2025CVE-2025-0348476908
accepté
290860code-projects Admission Management System Login index.php sql injectionVulDBVulDB08/01/202508/01/202508/01/2025CVE-2025-0347476898
accepté
290859code-projects Content Management System Publish News Page publishnews.php elévation de privilègesVulDBVulDB07/01/202508/01/202508/01/2025CVE-2025-0346476728
accepté
290858leiyuxi cy-fast listData sql injectionVulDBVulDB07/01/202508/01/202508/01/2025CVE-2025-0345475748
accepté
290857leiyuxi cy-fast listData sql injectionVulDBVulDB07/01/202508/01/202508/01/2025CVE-2025-0344475747
accepté
290829CampCodes Computer Laboratory Management System edit cross site scriptingVulDBVulDB08/01/202508/01/202508/01/2025CVE-2025-0342476897
accepté
290828CampCodes Computer Laboratory Management System edit elévation de privilègesVulDBVulDB08/01/202508/01/202508/01/2025CVE-2025-0341476884
accepté
290827code-projects Cinema Seat Reservation System deleteBooking.php sql injectionVulDBVulDB07/01/202508/01/202508/01/2025CVE-2025-0340476707
accepté
290826code-projects Online Bike Rental HTTP GET Request vehical-details.php cross site scriptingVulDBVulDB07/01/202508/01/202508/01/2025CVE-2025-0339475731
accepté
290823Codezips Project Management System teacher.php sql injectionVulDBVulDB06/01/202508/01/202508/01/2025CVE-2025-0336475493
accepté
290822code-projects Online Bike Rental System Change Image elévation de privilègesVulDBVulDB06/01/202508/01/202508/01/2025CVE-2025-0335475365
accepté
290821leiyuxi cy-fast listData sql injectionVulDBVulDB06/01/202508/01/202508/01/2025CVE-2025-0334475302
accepté
290820leiyuxi cy-fast listData sql injectionVulDBVulDB06/01/202508/01/202508/01/2025CVE-2025-0333475297
accepté
290819YunzMall HTTP POST Request ResetpwdController.php changePwd elévation de privilègesVulDBVulDB29/12/202408/01/202508/01/2025CVE-2025-0331471663
accepté
290792KaiYuanTong ECT Platform HTTP POST Request runCode.php elévation de privilègesVulDBVulDB28/12/202408/01/202508/01/2025CVE-2025-0328470601
accepté
290450code-projects Online Book Shop subcat.php cross site scriptingVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0301475287
accepté
290449code-projects Online Book Shop subcat.php sql injectionVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0300475286
accepté
290448code-projects Online Book Shop search_result.php sql injectionVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0299475285
accepté
290447code-projects Online Book Shop process_login.php sql injectionVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0298475159
accepté
290446code-projects Online Book Shop detail.php sql injectionVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0297475138
accepté
290445code-projects Online Book Shop booklist.php sql injectionVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0296475135
accepté
290444code-projects Online Book Shop booklist.php cross site scriptingVulDBVulDB06/01/202507/01/202507/01/2025CVE-2025-0295475134
accepté
290443SourceCodester Home Clean Services Management System process.php sql injectionVulDBVulDB05/01/202507/01/202507/01/2025CVE-2025-0294475076
accepté
290229Codezips Project Management System course.php sql injectionVulDBVulDB04/01/202504/01/202506/01/2025CVE-2025-0233474673
accepté
290228Codezips Blood Bank Management System successadmin.php sql injectionVulDBVulDB04/01/202504/01/202505/01/2025CVE-2025-0232474597
accepté
290227Codezips Gym Management System submit_payments.php sql injectionVulDBVulDB04/01/202504/01/202505/01/2025CVE-2025-0231474596
accepté
290226code-projects Responsive Hotel Site print.php sql injectionVulDBVulDB04/01/202504/01/202505/01/2025CVE-2025-0230474581
accepté
290225code-projects Travel Management System enquiry.php sql injectionVulDBVulDB04/01/202504/01/202505/01/2025CVE-2025-0229474572
accepté
290218code-projects Local Storage Todo App index.html cross site scriptingVulDBVulDB02/01/202504/01/202505/01/2025CVE-2025-0228474049
accepté
290217Tsinghua Unigroup Electronic Archives System downLoad.html divulgation de l'informationVulDBVulDB03/01/202504/01/202505/01/2025CVE-2025-0227474266
accepté
290216Tsinghua Unigroup Electronic Archives System downLoad.html download divulgation de l'informationVulDBVulDB03/01/202504/01/202505/01/2025CVE-2025-0226474265
accepté
290215Tsinghua Unigroup Electronic Archives System exampleDownload.html divulgation de l'informationVulDBVulDB03/01/202504/01/202505/01/2025CVE-2025-0225474264
accepté
290203Provision-ISR SH-4050A-2 server.js divulgation de l'informationVulDBVulDB20/12/202404/01/202505/01/2025CVE-2025-0224467085
accepté
290202IObit Protected Folder IOCTL IURegistryFilter.sys 0x8001E010 dénie de serviceVulDBVulDB20/12/202404/01/202505/01/2025CVE-2025-0223466963
accepté
290201IObit Protected Folder IOCTL IUProcessFilter.sys 0x8001E004 dénie de serviceVulDBVulDB20/12/202404/01/202505/01/2025CVE-2025-0222466956
accepté
290200IOBit Protected Folder IOCTL pffilter.sys 0x22200c dénie de serviceVulDBVulDB20/12/202404/01/202505/01/2025CVE-2025-0221466955
accepté
290199Trimble SPS851 Ethernet Configuration Menu cross site scriptingVulDBVulDB17/12/202404/01/202505/01/2025CVE-2025-0220464943
accepté
290198Trimble SPS851 Receiver Status Identity Tab cross site scriptingVulDBVulDB17/12/202404/01/202505/01/2025CVE-2025-0219464906
accepté
290159TMD Custom Header Menu index.php sql injectionVulDBVulDB03/01/202503/01/202504/01/2025CVE-2025-0214474299
accepté
290158Campcodes Project Management System update_forms.php elévation de privilègesVulDBVulDB03/01/202503/01/202504/01/2025CVE-2025-0213474200
accepté
290157Campcodes Student Grading System view_students.php sql injectionVulDBVulDB03/01/202503/01/202504/01/2025CVE-2025-0212474168
accepté
290156Campcodes School Faculty Scheduling System index.php elévation de privilègesVulDBVulDB03/01/202503/01/202504/01/2025CVE-2025-0211474115
accepté
290155Campcodes School Faculty Scheduling System ajax.php sql injectionVulDBVulDB03/01/202503/01/202504/01/2025CVE-2025-0210474112
accepté
290145code-projects Online Shoe Store summary.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0208474038
accepté
290144code-projects Online Shoe Store login.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0207474035
accepté
290143code-projects Online Shoe Store index.php elévation de privilègesVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0206474033
accepté
290142code-projects Online Shoe Store details2.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0205474032
accepté
290141code-projects Online Shoe Store details.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0204474031
accepté
290140code-projects Student Management System DbFunction.php showSubject1 sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0203473410
accepté
290139TCS BaNCS REPORTS_SHOW_FILE.jsp elévation de privilègesVulDBVulDB27/12/202403/01/202504/01/2025CVE-2025-0202469455
accepté
290138code-projects Point of Sales and Inventory Management System update_account.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0201473418
accepté
290137code-projects Point of Sales and Inventory Management System search_num.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0200473386
accepté
290136code-projects Point of Sales and Inventory Management System minus_cart.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0199473384
accepté
290135code-projects Point of Sales and Inventory Management System search_result.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0198473383
accepté
290134code-projects Point of Sales and Inventory Management System search.php sql injectionVulDBVulDB02/01/202503/01/202504/01/2025CVE-2025-0197473362
accepté
290133code-projects Point of Sales and Inventory Management System plist.php sql injectionVulDBVulDB02/01/202503/01/202503/01/2025CVE-2025-0196473350
accepté
290132code-projects Point of Sales and Inventory Management System del_product.php sql injectionVulDBVulDB02/01/202503/01/202503/01/2025CVE-2025-0195473349
accepté
290105code-projects Point of Sales and Inventory Management System add_cart.php sql injectionVulDBVulDB02/01/202502/01/202503/01/2025CVE-2025-0176473347
accepté
290104code-projects Online Shop view.php cross site scriptingVulDBVulDB02/01/202502/01/202503/01/2025CVE-2025-0175473333
accepté
290103code-projects Point of Sales and Inventory Management System Parameter search_result2.php sql injectionVulDBVulDB02/01/202502/01/202503/01/2025CVE-2025-0174473330
accepté
289940SourceCodester Online Eyewear Shop view_order.php sql injectionVulDBVulDB01/01/202502/01/202502/01/2025CVE-2025-0173473163
accepté
289939code-projects Chat System deleteroom.php sql injectionVulDBVulDB01/01/202502/01/202502/01/2025CVE-2025-0172473153
accepté
289938code-projects Chat System deleteuser.php sql injectionVulDBVulDB01/01/202502/01/202502/01/2025CVE-2025-0171473143
accepté
289917code-projects Job Recruitment _feedback_system.php sql injectionVulDBVulDB01/01/202501/01/202501/01/2025CVE-2025-0168473107
accepté

PrécédentAperçuSuivant

Might our Artificial Intelligence support you?

Check our Alexa App!