Lucene search
K

11468 matches found

OSV
OSV
added 2025/10/11 11:15 a.m.4 views

CVE-2025-11597

A vulnerability was identified in code-projects E-Commerce Website 1.0. The impacted element is an unknown function of the file /pages/productaddqty.php. The manipulation of the argument prodid leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly...

9.8CVSS5.7AI score0.00359EPSS
Exploits1References5
CVE
CVE
added 2025/10/11 11:2 a.m.14 views

CVE-2025-11597

Summary: CVE-2025-11597 affects the code-projects E-Commerce Website 1.0. The vulnerability resides in the file /pages/product_add_qty.php, where the argument prod_id is not validated, leading to SQL injection. Multiple sources corroborate a remote-exploit scenario with publicly available exploit...

9.8CVSS6.8AI score0.00359EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/11 11:2 a.m.4 views

CVE-2025-11597 code-projects E-Commerce Website product_add_qty.php sql injection

A vulnerability was identified in code-projects E-Commerce Website 1.0. The impacted element is an unknown function of the file /pages/productaddqty.php. The manipulation of the argument prodid leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly...

6.5CVSS6.8AI score0.00359EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2025/10/11 1:2 a.m.7 views

GNU Binutils Linker elflink.c elf_link_add_object_symbols out-of-bounds

...

5.5CVSS7AI score0.00199EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/10/11 12:20 a.m.8 views

CVE-2025-60308

code-projects Simple Online Hotel Reservation System 1.0 has a Cross Site Scripting XSS vulnerability in the Add Room function of the online hotel reservation system. Malicious JavaScript code is entered in the Description field, which can leak the administrator's cookie information when browsing...

4.1CVSS6AI score0.00236EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/10/11 12:0 a.m.4 views

SourceCodester Best Salon Management System SQL注入漏洞

SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the incorrect operation of the parameter ServiceId in the file...

9.8CVSS7.9AI score0.00425EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.6 views

PT-2025-41685

Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A flaw exists in code-projects E-Commerce Website 1.0 where manipulation of the prod id argument in the file /pages/product add qty.php can lead to SQL injection. This issue is potential...

6.5CVSS6.3AI score0.00359EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.6 views

PT-2025-41701

Name of the Vulnerable Software and Affected Versions SourceCodester Best Salon Management System version 1.0 Description A security flaw exists in SourceCodester Best Salon Management System 1.0. The issue is a SQL injection affecting an unknown part of the file /panel/add invoice.php...

7.5CVSS7.7AI score0.00425EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2025/10/10 9:27 p.m.5 views

CVE-2025-11557

A vulnerability has been found in projectworlds Gate Pass Management System 1.0. This issue affects some unknown processing of the file /add-pass.php. Such manipulation of the argument fullname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the publ...

9.8CVSS7.1AI score0.00395EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/10 8:22 p.m.5 views

CVE-2025-11553

A weakness has been identified in code-projects Courier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-courier.php. Executing manipulation of the argument Shippername can lead to sql injection. The attack can be launched remotely. The exploit ha...

9.8CVSS7.1AI score0.00359EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/10 6:31 p.m.4 views

EUVD-2025-33757

code-projects Simple Online Hotel Reservation System 1.0 has a Cross Site Scripting XSS vulnerability in the Add Room function of the online hotel reservation system. Malicious JavaScript code is entered in the Description field, which can leak the administrator's cookie information when browsing...

4.1CVSS5.5AI score0.00236EPSS
Exploits1References3
NVD
NVD
added 2025/10/10 5:15 p.m.4 views

CVE-2025-60308

code-projects Simple Online Hotel Reservation System 1.0 has a Cross Site Scripting XSS vulnerability in the Add Room function of the online hotel reservation system. Malicious JavaScript code is entered in the Description field, which can leak the administrator's cookie information when browsing...

4.1CVSS0.00236EPSS
Exploits1References2
OSV
OSV
added 2025/10/10 5:15 p.m.4 views

CVE-2025-60308

code-projects Simple Online Hotel Reservation System 1.0 has a Cross Site Scripting XSS vulnerability in the Add Room function of the online hotel reservation system. Malicious JavaScript code is entered in the Description field, which can leak the administrator's cookie information when browsing...

4.1CVSS5.8AI score0.00236EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/10 1:32 a.m.6 views

CVE-2025-11512

A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/votersadd.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has...

6.1CVSS5.5AI score0.00356EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/10 1:32 a.m.5 views

CVE-2025-11509

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/productadd.php. Performing manipulation of the argument prodname results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

9.8CVSS7AI score0.00359EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/10 1:32 a.m.6 views

CVE-2025-11511

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

9.8CVSS6.9AI score0.00359EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/10 1:32 a.m.10 views

CVE-2025-11485

A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected is the function adduser of the file /admin.php of the component Manage Users Page. This manipulation of the argument firstname/lastname causes cross site scripting. The attack can be initiated remotely...

4.8CVSS5.8AI score0.00266EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/10/10 12:0 a.m.5 views

CVE-2025-60308

code-projects Simple Online Hotel Reservation System 1.0 has a Cross Site Scripting XSS vulnerability in the Add Room function of the online hotel reservation system. Malicious JavaScript code is entered in the Description field, which can leak the administrator's cookie information when browsing...

0.00236EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/10/10 12:0 a.m.2 views

CVE-2025-60308

code-projects Simple Online Hotel Reservation System 1.0 has a Cross Site Scripting XSS vulnerability in the Add Room function of the online hotel reservation system. Malicious JavaScript code is entered in the Description field, which can leak the administrator's cookie information when browsing...

5.7AI score0.00236EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/10 12:0 a.m.5 views

Code-Projects Simple Online Hotel Reservation System 安全漏洞

Simple Online Hotel Reservation System is a simple online hotel reservation system. A cross-site scripting vulnerability exists in Simple Online Hotel Reservation System, which arises from unvalidated input to the Description field in the Add Room function, no details of the vulnerability are...

4.1CVSS6.1AI score0.00236EPSS
Exploits1References3
Rows per page
Query Builder