CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3502 matches found

CNNVD•added 2025/06/06 12:0 a.m.•2 views

Code-Projects Patient Record Management System 注入漏洞

Patient Record Management System is a medical record management system. Patient Record Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter itrno in the file viewhematology.php. An attacker can...

7.5CVSS7.1AI score0.00331EPSS

Exploits1References6

CVE•added 2025/06/05 11:0 p.m.•60 views

CVE-2025-5704

CVE-2025-5704 affects code-projects Real Estate Property Management System 1.0. The vulnerability arises from improper handling of the txtUserName parameter in /Admin/User.php, enabling SQL injection. Exploitation could be remote and an exploit has been disclosed publicly. The available reference...

7.5CVSS7.7AI score0.00393EPSS

Exploits1References5Affected Software1

NVD•added 2025/06/05 4:15 a.m.•14 views

CVE-2025-5633

A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/users.php. The manipulation of the argument delete leads to sql injection. The attack may be...

8.8CVSS0.00389EPSS

Exploits1References4

Cvelist•added 2025/06/05 3:31 a.m.•23 views

CVE-2025-5633 code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection

6.5CVSS0.00389EPSS

Exploits1References4

Cvelist•added 2025/06/05 2:31 a.m.•19 views

CVE-2025-5631 code-projects/anirbandutta9 Content Management System/News-Buzz publicposts.php sql injection

A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been classified as critical. Affected is an unknown function of the file /publicposts.php. The manipulation of the argument post leads to sql injection. It is possible to launch the attack...

7.5CVSS0.00478EPSS

Exploits1References4

Positive Technologies•added 2025/06/05 12:0 a.m.•6 views

PT-2025-23986 · Code Projects · Code-Projects Real Estate Property Management System

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical issue was found in the code-projects Real Estate Property Management System. The problem affects an unknown function of the file /Admin/Property.php...

7.5CVSS7.5AI score0.00414EPSS

Exploits1References12

CNNVD•added 2025/06/05 12:0 a.m.•3 views

Code-Projects Patient Record Management System 注入漏洞

Patient Record Management System is a medical record management system. Patient Record Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the urinalysisform.php file parameter urinalysisid. An attacker can...

8.8CVSS7AI score0.00369EPSS

Exploits1References6

CNNVD•added 2025/06/05 12:0 a.m.•3 views

code-projects Patient Record Management System 安全漏洞

Patient Record Management System is a medical record management system. Patient Record Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the parameter itrno in file /sputumform.php. An attacker can exploit thi...

7.5CVSS7.1AI score0.00314EPSS

Exploits1References6

CNNVD•added 2025/05/27 12:0 a.m.•3 views

Code-Projects Online Exam Mastering System 安全漏洞

Code-Projects Online Exam Mastering System is a Code-Projects open source online exam system. A security vulnerability exists in Code-Projects Online Exam Mastering System version 1.0, which stems from the feedback form name field being susceptible to cross-site scripting attacks...

6.1CVSS5.9AI score0.00266EPSS

Exploits1References2

Positive Technologies•added 2025/05/27 12:0 a.m.•6 views

PT-2025-23023 · Unknown · Code-Projects Online Exam Mastering System

Name of the Vulnerable Software and Affected Versions: code-projects Online Exam Mastering System version 1.0 Description: The issue concerns a Cross Site Scripting XSS vulnerability via the name field in the feedback form. This allows for potential malicious script execution. No information is...

6.1CVSS5.1AI score0.00266EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 10:47 a.m.•7 views

CVE-2024-10137

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /managemedicine.php?action=delete. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS7.4AI score0.00529EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:57 a.m.•10 views

CVE-2024-24097

Cross Site Scripting XSS vulnerability in Code-projects Scholars Tracking System 1.0 allows attackers to run arbitrary code via the News Feed...

5.4CVSS6.2AI score0.00323EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:57 a.m.•11 views

CVE-2024-24093

SQL Injection vulnerability in Code-projects Scholars Tracking System 1.0 allows attackers to run arbitrary code via Personal Information Update information...

9.8CVSS8.4AI score0.00569EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:50 a.m.•12 views

CVE-2024-24101

Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Eligibility Information Update...

9.8CVSS8AI score0.0031EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:46 a.m.•17 views

CVE-2024-25318

Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2...

8.8CVSS9.1AI score0.00698EPSS

Exploits1References1