CVE-2025-46188

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in the superadmin_phpmyadmin.php file. The root cause is insufficient input validation in the affected file, enabling high-impact access to confidential data, potential manipulation, and disruption (CVSS 3.1 base ...

CVE-2025-46189

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userordercustomerupdate.php via the orderid POST parameter...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from a misbehavior of the parameter uploadedfilecancelled in...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from an SQL injection in superadminphpmyadmin.php...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from the presence of an arbitrary file upload in...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

PT-2025-20575

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description SourceCodester Client Database Management System version 1.0 is susceptible to SQL Injection through the superadmin phpmyadmin.php file. The issue allows for potential...

CVE-2025-46189

SourceCodester Client Database Management System 1.0 is affected by a SQL Injection in user_order_customer_update.php via the order_id POST parameter. Root cause: improper handling/validation of the order_id parameter. Impact: potential unauthorized access/modification of the database (per CVSS 3...

CVE-2025-46190

CVE-2025-46190 affects SourceCodester Client Database Management System 1.0, with a SQL Injection vulnerability in the file user_delivery_update.php exploitable via the POST parameter order_id . The CVE has a high impact (CVSS 3.1: 9.8, CRITICAL) with network attack vector, no privileges required...

CVE-2025-46192

CVE-2025-46192 affects SourceCodester Client Database Management System 1.0. Vulnerable component: user_payment_update.php, where SQL injection is possible via the order_id POST parameter due to improper input handling. Impact per CVSS: high confidentiality, integrity, and availability; overall c...

CVE-2025-46191

CVE-2025-46191 affects SourceCodester Client Database Management System 1.0, where an unauthenticated user can upload files through the uploaded_file_cancelled field in the file upload routine in user_payment_update.php . The vulnerability stems from inadequate validation: no proper file extensio...

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...