Hostel Management System mod_users/index.php File SQL Injection Vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modusers/index.php. An attacker can exploit this...

CVE-2025-10798

A vulnerability was identified in code-projects Hostel Management System 1.0. Impacted is an unknown function of the file /justines/admin/modroomtype/index.php?view=view. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit is publicly...

CVE-2025-10799

CVE-2025-10799 affects code-projects Hostel Management System 1.0. The vulnerability is an SQL injection caused by unsanitized input on parameter ID in /justines/admin/mod_reservation/index.php?view=view. Remote exploitation is possible; exploit maturity is reported as PROOF-OF-CONCEPT. Multiple ...

Code-Projects Hostel Management System SQL注入漏洞

Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modcomments/index.php. An attacker can use this...

CVE-2025-10673

A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of the argument classId causes sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-10673 itsourcecode Student Information Management System index.php sql injection

A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of the argument classId causes sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-10113

CVE-2025-10113 affects itsourcecode Student Information Management System 1.0. The vulnerability is a SQL injection in /admin/modules/room/index.php caused by manipulation of the ID argument. Remote exploitation is possible, and the exploit has been publicly disclosed. Some sources note a workaro...

CVE-2025-10113 itsourcecode Student Information Management System index.php sql injection

A security vulnerability has been detected in itsourcecode Student Information Management System 1.0. This affects an unknown function of the file /admin/modules/room/index.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has...

CVE-2025-9837

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of the argument studentId causes sql injection. The attack may be initiated remotely. The exploit ha...

CVE-2025-9839

A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possibl...

CVE-2025-9930

CVE-2025-9930 affects 1000projects Beauty Parlour Management System 1.0, specifically the vulnerability in the file /admin/contact-us.php where manipulating the mobnumber parameter enables a SQL injection. Exploitation can be performed remotely and has been disclosed publicly. The CVE is corrobor...

CVE-2025-9837

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of the argument studentId causes sql injection. The attack may be initiated remotely. The exploit ha...

CVE-2025-9837

CVE-2025-9837 affects itsourcecode Student Information Management System 1.0. The vulnerability arises from SQL injection in the file /admin/modules/student/index.php via the studentId parameter. Attacks can be initiated remotely, and the exploit has been publicly disclosed. For mitigation, sever...

PT-2025-35638

Name of the Vulnerable Software and Affected Versions: itsourcecode Student Information Management System version 1.0 Description: A SQL injection issue exists due to the manipulation of the studentId argument in the processing of the file /admin/modules/student/index.php. The attack can be...

CVE-2025-9753 Campcodes Online Hospital Management System Patient Search patient-search.php cross site scripting

A vulnerability was detected in Campcodes Online Hospital Management System 1.0. The affected element is an unknown function of the file /admin/patient-search.php of the component Patient Search Module. Performing manipulation of the argument Search by Name Mobile No results in cross site...

Linux Distros Unpatched Vulnerability : CVE-2017-18121

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The consentAdmin module in SimpleSAMLphp through 1.14.15 is vulnerable to a Cross-Site Scripting attack, allowing an attacker to craft links that could execute...

PT-2025-32482 · Unknown · Xujeff Tianti 天梯

Name of the Vulnerable Software and Affected Versions: xujeff tianti 天梯 versions prior to 2.3 Description: A problematic issue exists in xujeff tianti 天梯. The exportOrder function within the /tianti-module-admin/user/ajax/save file of the com.jeff.tianti.controller component is susceptible to CSV...

CVE-2025-8772

A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en&nv=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack m...

Art Gallery Management System changepropic.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter imageid in the file /admin/changepropic.php. An attacker...

Code-Projects Real Estate Property Management System 注入漏洞

Code-Projects Real Estate Property Management System is an open source real estate property management system from Code-Projects. Code-Projects Real Estate Property Management System version 1.0 has an injection vulnerability, the vulnerability stems from the wrong operation of the parameter...