Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-04-07 CVE-2025-3330 SQL Injection vulnerability in Code-Projects Online Restaurant Management System 1.0
A vulnerability classified as critical was found in codeprojects Online Restaurant Management System 1.0.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8
2025-04-06 CVE-2025-3316 Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability was found in PHPGurukul Men Salon Management System 1.0.
network
low complexity
phpgurukul CWE-74
critical
 9.8
9.8
2025-04-06 CVE-2025-3315 Injection vulnerability in Oretnom23 Apartment Visitor Management System 1.0
A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0 and classified as critical.
network
low complexity
oretnom23 CWE-74
critical
 9.8
9.8
2025-04-06 CVE-2025-3314 Injection vulnerability in Oretnom23 Apartment Visitor Management System 1.0
A vulnerability has been found in SourceCodester Apartment Visitor Management System 1.0 and classified as critical.
network
low complexity
oretnom23 CWE-74
critical
 9.8
9.8
2025-04-06 CVE-2025-3313 Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability, which was classified as critical, was found in PHPGurukul Men Salon Management System 1.0.
network
low complexity
phpgurukul CWE-74
critical
 9.8
9.8
2025-04-06 CVE-2025-32370 Unrestricted Upload of File with Dangerous Type vulnerability in Kentico Xperience
Kentico Xperience before 13.0.178 has a specific set of allowed ContentUploader file extensions for unauthenticated uploads; however, because .zip is processed through TryZipProviderSafe, there is additional functionality to create files with other extensions.
network
low complexity
kentico CWE-434
critical
 9.8
9.8
2025-04-06 CVE-2025-3312 Injection vulnerability in PHPgurukul MEN Salon Management System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Men Salon Management System 1.0.
network
low complexity
phpgurukul CWE-74
critical
 9.8
9.8
2025-04-06 CVE-2025-3308 SQL Injection vulnerability in Adonesevangelista Online Blood Bank Management System 1.0
A vulnerability was found in code-projects Blood Bank Management System 1.0.
network
low complexity
adonesevangelista CWE-89
critical
 9.8
9.8
2025-04-06 CVE-2025-3307 SQL Injection vulnerability in Code-Projects Blood Bank Management System 1.0
A vulnerability was found in code-projects Blood Bank Management System 1.0.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8
2025-04-06 CVE-2025-3306 SQL Injection vulnerability in Code-Projects Blood Bank Management System 1.0
A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8