CVE-2025-27531 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

CVE ID : CVE-2025-27531

Published : June 6, 2025, 3:15 p.m. | 21 minutes ago

Description : Deserialization of Untrusted Data vulnerability in Apache InLong. 

This issue affects Apache InLong: from 1.13.0 before 2.1.0,

this issue would allow an authenticated attacker to read arbitrary files by double writing the param.

Users are recommended to upgrade to version 2.1.0, which fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-41646 – Apache Software Type Confusion Authentication Bypass

CVE ID : CVE-2025-41646

Published : June 6, 2025, 3:15 p.m. | 21 minutes ago

Description : An unauthorized remote attacker can bypass the authentication of the affected software package by misusing an incorrect type conversion. This leads to full compromise of the device

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-5779 – “Code-projects Patient Record Management System SQL Injection Vulnerability”

CVE ID : CVE-2025-5779

Published : June 6, 2025, 3:15 p.m. | 21 minutes ago

Description : A vulnerability has been found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /birthing.php. The manipulation of the argument itr_no/comp_id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-5780 – Code-projects Patient Record Management System SQL Injection Vulnerability

CVE ID : CVE-2025-5780

Published : June 6, 2025, 3:15 p.m. | 21 minutes ago

Description : A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /view_dental.php. The manipulation of the argument itr_no leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-5782 – PHPGurukul Employee Record Management System SQL Injection Vulnerability

CVE ID : CVE-2025-5782

Published : June 6, 2025, 3:15 p.m. | 21 minutes ago

Description : A vulnerability, which was classified as critical, has been found in PHPGurukul Employee Record Management System 1.3. Affected by this issue is some unknown functionality of the file /resetpassword.php. The manipulation of the argument newpassword leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…