PT-2025-47888

A flaw has been found in SourceCodester Online Student Clearance System 1.0. Impacted is an unknown function of the file /Admin/changepassword.php. This manipulation of the argument txtconfirm password causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

EUVD-2023-12675

Malicious code in bioql PyPI...

CVE-2025-7127 itsourcecode Employee Management System changepassword.php sql injection

A vulnerability, which was classified as critical, was found in itsourcecode Employee Management System up to 1.0. This affects an unknown part of the file /admin/changepassword.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to initiate the attack...

CVE-2025-6502

CVE-2025-6502 affects code-projects’ Inventory Management System 1.0. The vulnerability arises from unsafely handling the user_id parameter in the file /php_action/changePassword.php , enabling SQL injection . The attack is described as remotely exploitable and the exploit has been publicly discl...

Employee Record Management System changepassword.php File SQL Injection Vulnerability

Employee Record Management System is an employee record management system. Employee Record Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter currentpassword in the file changepassword.php. An...

CVE-2025-4164

A vulnerability, which was classified as critical, was found in PHPGurukul Employee Record Management System 1.3. Affected is an unknown function of the file changepassword.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to launch the attack remotely...

CVE-2025-4164 PHPGurukul Employee Record Management System changepassword.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Employee Record Management System 1.3. Affected is an unknown function of the file changepassword.php. The manipulation of the argument currentpassword leads to sql injection. It is possible to launch the attack remotely...

CVE-2023-0641

A vulnerability was found in PHPGurukul Employee Leaves Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file changepassword.php. The manipulation of the argument newpassword/confirmpassword leads to weak password...

PT-2023-16418 · Unknown · Phpgurukul Employee Leaves Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Employee Leaves Management System version 1.0 Description: A vulnerability was found in the PHPGurukul Employee Leaves Management System, affecting an unknown functionality of the file changepassword.php. The manipulation of the...