Security Vulnerabilities
PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-class-pic.php.
CVSS Score
7.5
EPSS Score
0.004
Published
2025-06-23
PHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-teacher-pic.php.
CVSS Score
7.5
EPSS Score
0.004
Published
2025-06-23
A vulnerability has been found in HDF5 up to 1.14.6 and classified as critical. This vulnerability affects the function H5F_addr_decode_len of the file /hdf5/src/H5Fint.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
CVSS Score
5.3
EPSS Score
0.0
Published
2025-06-23
An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to escalate privileges via a crafted POST request to the grantRolesToUsers, grantRolesToGroups, and grantRolesToOrganization SOAP API component.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-06-23
A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload into any text field that accepts strings.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-06-23
Password Vulnerability in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the UserService SOAP API function.
CVSS Score
9.8
EPSS Score
0.004
Published
2025-06-23
In JetBrains TeamCity before 2025.03.3 a DOM-based XSS at the Performance Monitor page was possible
CVSS Score
5.4
EPSS Score
0.001
Published
2025-06-23
In JetBrains TeamCity before 2025.03.3 reflected XSS on the favoriteIcon page was possible
CVSS Score
5.4
EPSS Score
0.001
Published
2025-06-23
In JetBrains TeamCity before 2025.03.3 reflected XSS on diskUsageBuildsStats page was possible
CVSS Score
4.8
EPSS Score
0.0
Published
2025-06-23
In JetBrains TeamCity before 2025.03.3 usernames were exposed to the users without proper permissions
CVSS Score
4.3
EPSS Score
0.0
Published
2025-06-23