Latest CVE Feed
-
7.3
CVSS31CVE-2025-7576
A vulnerability was found in Teledyne FLIR FB-Series O and FLIR FH-Series ID 1.3.2.16 and classified as critical. Affected by this issue is some unknown functionality of the file /priv/production/production.html of the component Production Tools. The mani... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7587
A vulnerability was found in code-projects Online Appointment Booking System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /cover.php. The manipulation of the argument uname/psw leads to sql injection... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7606
A vulnerability classified as critical has been found in code-projects AVL Rooms 1.0. This affects an unknown part of the file /city.php. The manipulation of the argument city leads to sql injection. It is possible to initiate the attack remotely. The exp... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7593
A vulnerability was found in code-projects Job Diary 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /view-all.php. The manipulation of the argument ID leads to sql injection. The attack may be launched rem... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7594
A vulnerability was found in code-projects Job Diary 1.0. It has been classified as critical. This affects an unknown part of the file /view-emp.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotel... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7605
A vulnerability was found in code-projects AVL Rooms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /profile.php. The manipulation of the argument first_name leads to sql injection. The attack may be l... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.2
CVSS31CVE-2025-7603
A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. Affected is an unknown function of the file /jingx.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. It is possible... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.2
CVSS31CVE-2025-7602
A vulnerability was found in D-Link DI-8100 16.07.26A1 and classified as critical. This issue affects some unknown processing of the file /arp_sys.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
7.2
CVSS31CVE-2024-58258
SugarCRM before 13.0.4 and 14.x before 14.0.1 allows SSRF in the API module because a limited type of code injection can occur.... Read more
Affected Products : sugarcrm- Published: Jul. 13, 2025
- Modified: Jul. 13, 2025
-
7.0
CVSS31CVE-2025-1384
Least Privilege Violation (CWE-272) Vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software. An attacker may use this vulnerability to perform unauthorized access and to exe... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.7
CVSS31CVE-2025-7519
A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be triggered. This issue can lead to a crash or other unexpected behavior, and arbitrary code execution is not discarded. To exp... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.4
CVSS31CVE-2025-53865
In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker templates (devel and responsive).... Read more
Affected Products : roundup- Published: Jul. 13, 2025
- Modified: Jul. 13, 2025
-
6.3
CVSS31CVE-2025-7555
A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. This issue affects some unknown processing of the file /admin/voters_add.php. The manipulation of the argument firstname/lastname leads to sql injection.... Read more
Affected Products : voting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7559
A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been classified as critical. This affects an unknown part of the file /admin/bwdates-report-result.php. The manipulation of the argument fromdate/todate leads to sql injectio... Read more
Affected Products : online_fire_reporting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7560
A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been declared as critical. This vulnerability affects unknown code of the file /admin/workin-progress-requests.php. The manipulation of the argument teamid leads to sql injec... Read more
Affected Products : online_fire_reporting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7561
A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been rated as critical. This issue affects some unknown processing of the file /admin/team-ontheway-requests.php. The manipulation of the argument teamid leads to sql injecti... Read more
Affected Products : online_fire_reporting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7562
A vulnerability classified as critical has been found in PHPGurukul Online Fire Reporting System 1.2. Affected is an unknown function of the file /admin/new-requests.php. The manipulation of the argument teamid leads to sql injection. It is possible to la... Read more
Affected Products : online_fire_reporting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7487
A vulnerability, which was classified as critical, was found in JoeyBling SpringBoot_MyBatisPlus up to a6a825513bd688f717dbae3a196bc9c9622fea26. This affects the function SysFileController of the file /file/upload. The manipulation of the argument portrai... Read more
Affected Products :- Published: Jul. 12, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7599
A vulnerability, which was classified as critical, has been found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected by this issue is some unknown functionality of the file /invoice.php. The manipulation of the argument del leads to sql injecti... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7614
A vulnerability classified as critical has been found in TOTOLINK T6 4.1.5cu.748. Affected is the function delDevice of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ipAddr leads to command inje... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025