Security Vulnerabilities
Insider Threat Management (ITM) Server versions prior to 7.17.2 contain an authentication bypass vulnerability that allows unauthenticated users on an adjacent network to perform agent unregistration when the number of registered agents exceeds the licensed limit. Successful exploitation prevents the server from receiving new events from affected agents, resulting in a partial loss of integrity and availability with no impact to confidentiality.
CVSS Score
5.4
EPSS Score
0.001
Published
2025-11-03
Phpgurukul Maid Hiring Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in /maid-hiring.php va the name field.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-11-03
IdentityIQ
8.5, IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p4, IdentityIQ 8.3 and
all 8.3 patch levels including 8.3p5, and all prior versions allows some
IdentityIQ web services that provide non-HTML content to be accessed via a URL
path that will set the Content-Type to HTML allowing a requesting browser to
interpret content not properly escaped to prevent Cross-Site Scripting (XSS).
CVSS Score
7.1
EPSS Score
0.0
Published
2025-11-03
Water Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /orders.php.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-11-03
Car-Booking-System-PHP v.1.0 is vulnerable to Cross Site Scripting (XSS) in /carlux/booking.php.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-11-03
Car-Booking-System-PHP v.1.0 is vulnerable to SQL Injection in /carlux/sign-in.php.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-11-03
Car-Booking-System-PHP v.1.0 is vulnerable to SQL Injection in /carlux/forgot-pass.php.
CVSS Score
9.4
EPSS Score
0.0
Published
2025-11-03
Car-Booking-System-PHP v.1.0 is vulnerable to SQL Injection in /carlux/contact.php.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-11-03
Water Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /add_vendor.php.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-11-03
Water Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /add_customer.php.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-11-03