A vulnerability was detected in SourceCodester Pet Grooming Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax_product.php. The manipulation of the argument drop_services results in sql injection. The attack can be launched remotely. The exploit is now public and may be used.

CVE Database V5

Detailed information about CVE-2025-10429: SQL Injection in SourceCodester Pet Grooming Management Software affecting SourceCodester Pet Grooming Management Sof

CVE-2025-10429: SQL Injection in SourceCodester Pet Grooming Management Software - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-10429: SQL Injection in SourceCodester Pet Grooming Management Software

A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI-8003G 16.07.26A1/17.12.20A1/19.12.10A1. Affected by this vulnerability is the function sub_4621DC of the file usb_paswd.asp of the component jhttpd. The manipulation of the argument hname leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Detailed information about CVE-2025-10440: OS Command Injection in D-Link DI-8100 affecting D-Link DI-8100. Get real-time updates, technical details, and mitiga

CVE-2025-10440: OS Command Injection in D-Link DI-8100 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-10440: OS Command Injection in D-Link DI-8100

A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0. Affected is an unknown function of the file /admin/seo_setting.php of the component Setting Handler. The manipulation of the argument website_image leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.

Detailed information about CVE-2025-10428: Unrestricted Upload in SourceCodester Pet Grooming Management Software affecting SourceCodester Pet Grooming Manageme

CVE-2025-10428: Unrestricted Upload in SourceCodester Pet Grooming Management Software - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-10428: Unrestricted Upload in SourceCodester Pet Grooming Management Software

A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service (DoS). The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during the deserialization process. This leads to CPU exhaustion, rendering the application or system using the Apache Fory library unresponsive and unavailable to legitimate users.

Users of Apache Fory are strongly advised to upgrade to version 0.12.2 or later to mitigate this vulnerability. Developers of libraries and applications that depend on Apache Fory should update their dependency requirements to Apache Fory 0.12.2 or later and release new versions of their software.

Detailed information about CVE-2025-59328: CWE-502 Deserialization of Untrusted Data in Apache Software Foundation Apache Fory affecting Apache Software Foundat

CVE-2025-59328: CWE-502 Deserialization of Untrusted Data in Apache Software Foundation Apache Fory - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-59328: CWE-502 Deserialization of Untrusted Data in Apache Software Foundation Apache Fory

A weakness has been identified in Campcodes Computer Sales and Inventory System 1.0. The impacted element is an unknown function of the file /pages/sup_searchfrm.php?action=edit. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited.

Detailed information about CVE-2025-10436: SQL Injection in Campcodes Computer Sales and Inventory System affecting Campcodes Computer Sales and Inventory Syste

CVE-2025-10436: SQL Injection in Campcodes Computer Sales and Inventory System - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-10436: SQL Injection in Campcodes Computer Sales and Inventory System

This issue was addressed through improved state management. This issue is fixed in iOS 26 and iPadOS 26. Private Browsing tabs may be accessed without authentication.

Detailed information about CVE-2025-30468: Private Browsing tabs may be accessed without authentication in Apple iOS and iPadOS affecting Apple iOS and iPadOS. 