Overview CVE-2024-44630 identifies a significant SQL injection vulnerability found in the PHPGurukul Student Record System version 3.20. This vulnerability resides within the register.php file and affects numerous input parameters, potentially allowing attackers to execute arbitrary SQL commands on the system’s database. Technical Details The vulnerability stems from insufficient input sanitization in the register.php script. Multiple parameters are susceptible to SQL injection, including (but not limited to): c-full fname mname lname gname ocp nation mobno email board1 roll1 pyear1 board2 roll2 pyear2 sub1 marks1 sub2 course-short income category ph country state city padd cadd gender An attacker can craft malicious SQL…

Overview A Cross-Site Scripting (XSS) vulnerability has been discovered in Alto CMS version 1.1.13. This vulnerability, identified as CVE-2024-42749, allows a local attacker to inject and execute arbitrary JavaScript code within the context of a user’s browser. Successful exploitation could lead to various malicious activities, including session hijacking, defacement, and the theft of sensitive information. Technical Details of CVE-2024-42749 The vulnerability resides in Alto CMS v.1.1.13 where insufficient input sanitization allows for the injection of malicious scripts. A crafted script, likely injected through a vulnerable input field or parameter, can then be executed when a user interacts with the affected…

Overview CVE-2025-13168 is a medium-severity SQL injection vulnerability discovered in Ury-ERP versions up to 0.2.0. This flaw allows a remote attacker to execute arbitrary SQL commands by manipulating the search_term argument in the overrided_past_order_list function of the ury/ury/api/pos_extend.py file. Exploitation of this vulnerability could lead to unauthorized data access, modification, or even complete system compromise. A public exploit is available, increasing the risk of active exploitation. Ury-ERP developers have released version 0.2.1 to address this issue, demonstrating a proactive and professional response. Technical Details The vulnerability resides within the overrided_past_order_list function in the ury/ury/api/pos_extend.py file. Insufficient input validation on the…

Overview This article details a security vulnerability, identified as CVE-2024-21635, affecting Memos, a privacy-first, lightweight note-taking service. The vulnerability resides in the handling of Access Tokens after a user changes their password. Specifically, existing Access Tokens remain valid even after a password change, potentially allowing malicious actors to maintain unauthorized access to a compromised account. Technical Details Memos relies on Access Tokens for authentication. When a user changes their password, the application *should* revoke all existing Access Tokens, forcing a re-authentication process. However, versions up to and including 0.18.1 fail to do so. This means that if an attacker has…

Overview A significant security vulnerability, identified as CVE-2025-9982, has been discovered in QuickCMS version 6.8. This flaw involves the storage of sensitive admin credentials in plaintext within a configuration file. An attacker who gains access to either the source code or the server’s file system can retrieve these credentials, potentially leading to privilege escalation and complete compromise of the affected QuickCMS installation. Technical Details The vulnerability stems from the inclusion of hardcoded administrator credentials directly within a configuration file. Instead of utilizing secure hashing and salting techniques, the username and password for the administrator account are stored in plaintext. This…

Overview CVE-2025-12149 describes a security vulnerability in Search Guard FLX versions 3.1.2 and earlier. This vulnerability allows for a Document-Level Security (DLS) bypass when searches are triggered from Signal’s watch functionality. While DLS is correctly enforced in other scenarios, queries initiated through Signal watches circumvent the DLS rules, potentially exposing sensitive data to unauthorized users. Technical Details The vulnerability stems from the way Search Guard FLX handles security contexts when a search is initiated from a Signal watch. Specifically, the DLS rules, designed to filter documents based on user roles and permissions, are not properly applied to searches originating from…

Overview A significant security vulnerability, identified as CVE-2025-11918, has been discovered in Rockwell Automation Arena®. This vulnerability involves a stack-based buffer overflow that could allow local attackers to execute arbitrary code on affected systems. The vulnerability is triggered by opening a specially crafted DOE file. Technical Details The vulnerability lies within the parsing logic of DOE files in Rockwell Automation Arena®. Specifically, the application fails to properly validate the size of data being written to a stack-allocated buffer. This lack of validation allows a malicious DOE file to write beyond the bounds of the buffer, potentially overwriting critical program data,…

Overview CVE-2025-8855 identifies a high-severity vulnerability affecting Optimus Software’s Brokerage Automation platform. This vulnerability allows for Authorization Bypass Through User-Controlled Key, Weak Password Recovery Mechanism for Forgotten Password, Authentication Bypass by Assumed-Immutable Data leading to Exploiting Trust in Client, Authentication Bypass, and the potential to Manipulate Registry Information. The affected versions are those before 1.1.71. Organizations using Optimus Brokerage Automation should immediately assess their exposure and apply the recommended mitigation steps. Technical Details CVE-2025-8855 encompasses several distinct but related security flaws: Authorization Bypass Through User-Controlled Key: The system allows unauthorized access to certain functionalities or data by improperly validating user-controlled…

Overview CVE-2025-11981 details a medium-severity SQL Injection vulnerability discovered in the School Management System – WPSchoolPress plugin for WordPress. This vulnerability affects all versions up to and including 2.2.23. The flaw allows authenticated attackers with administrator-level access or higher to inject arbitrary SQL commands into database queries. Exploitation could lead to the extraction of sensitive information, potentially compromising the entire WordPress installation. Technical Details The vulnerability stems from insufficient input sanitization on the ‘SCodes’ parameter used within the plugin’s code. Specifically, the plugin fails to properly escape user-supplied input and lacks sufficient preparation in its existing SQL queries. This allows…

Overview CVE-2025-55073 is a medium-severity vulnerability affecting Mattermost, a popular open-source collaboration platform. This flaw allows a remote attacker to edit arbitrary posts within the Mattermost environment by exploiting a weakness in the validation of the relationship between post updates and the MSTeams plugin OAuth flow. Technical Details The vulnerability lies in the improper validation of the association between a post being updated and the MSTeams plugin OAuth flow. Specifically, versions 10.11.x (