VIewComponent is a framework for building view components in Ruby on Rails. Versions prior to 2.31.2 and 2.49.1 contain a cross-site scripting vulnerability that has…

Event Management v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the full_name parameter under register.php. Devamını Oku Kaynak: NIST

A remote code execution (RCE) vulnerability in the Avatar parameter under /admin/?page=user/manage_user of Home Owners Collection Management System v1.0 allows attackers to execute arbitrary code…

Simple Bakery Shop Management v1.0 was discovered to contain a SQL injection vulnerability via the username parameter. Devamını Oku Kaynak: NIST

Medical Store Management System v1.0 was discovered to contain a SQL injection vulnerability via the cid parameter under customer-add.php. Devamını Oku Kaynak: NIST

Cosmetics and Beauty Product Online Store v1.0 was discovered to contain multiple reflected cross-site scripting (XSS) attacks via the search parameter under the /cbpos/ app.…

Cosmetics and Beauty Product Online Store v1.0 was discovered to contain a SQL injection vulnerability via the search parameter. Devamını Oku Kaynak: NIST

Auto Spare Parts Management v1.0 was discovered to contain a SQL injection vulnerability via the user parameter. Devamını Oku Kaynak: NIST

Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter. Devamını Oku Kaynak: NIST

Air Cargo Management System v1.0 was discovered to contain a SQL injection vulnerability via the ref_code parameter. Devamını Oku Kaynak: NIST