Code-Projects Automated Voting System SQL注入漏洞

Code-Projects Automated Voting System is a Code-Projects open source automated voting system. Code-Projects Automated Voting System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Username in the file /admin/user.php, which could lead...

PT-2025-43947

Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in code-projects Client Details System 1.0 that allows for cross site scripting. The issue affects unknown code within the /welcome.php file and can be exploited remotel...

PT-2025-44060

Name of the Vulnerable Software and Affected Versions Code-Projects E-Commerce Website version 1.0 Description A cross site scripting issue exists in Code-Projects E-Commerce Website version 1.0. The issue is related to the manipulation of the supp name/supp address arguments within the file...

PT-2025-43899

Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in the GET Parameter Handler component of the software, specifically within the clientdetails/welcome.php file. Manipulation of the ID parameter can lead to a SQL...

Code-Projects Online Event Judging System SQL注入漏洞

Online Event Judging System is an online event judging system. Online Event Judging System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter contestantid in the file /editcontestant.php. An attacker can...

PT-2025-43929

Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A flaw exists in code-projects Online Event Judging System 1.0 that allows for SQL injection. The issue is located in the /edit criteria.php file, specifically through...

Code-Projects Simple E-Banking System 代码注入漏洞

Code-Projects Simple E-Banking System is a simple e-banking system from Code-Projects. A code injection vulnerability exists in Code-Projects Simple E-Banking System version 1.0, which stems from an incorrect manipulation of the parameter Username in the file /eBank/register.php, which could lead...

PT-2025-43930

Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A flaw exists in code-projects Online Event Judging System 1.0 that allows for remote SQL injection. The issue is located in the file /edit judge.php within an unknown function...

PT-2025-44061

Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A flaw exists in code-projects E-Commerce Website 1.0 that allows for cross site scripting. The issue is located in the /pages/product add.php file. Manipulation of the prod name, prod...

PT-2025-43953

Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in code-projects Client Details System 1.0 that allows for cross site scripting. The issue is located in the file /admin/clientview.php within an unknown function. This...

PT-2025-43955

Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A security flaw exists that allows for authorization bypass. The issue is located within an unknown function and can be exploited remotely. The exploit for this issue has been publicl...

PT-2025-43914

Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A security flaw exists in code-projects Online Event Judging System 1.0. Manipulation of the fullname argument in the /add contestant.php file can lead to SQL injection. Remote...

PT-2025-44065

Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A cross site scripting issue exists in code-projects E-Commerce Website version 1.0. The issue is related to the manipulation of the supp name/supp address argument within the file...

PT-2025-43954

Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A security issue exists in code-projects Client Details System 1.0. The issue involves cross site scripting, potentially allowing remote attackers to compromise the system. The affect...

CVE-2025-11668 code-projects Automated Voting System update_user.php sql injection

A vulnerability was determined in code-projects Automated Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/updateuser.php. This manipulation of the argument Password causes sql injection. The attack is possible to be carried out remotely. The exploit has...

CVE-2025-11668 code-projects Automated Voting System update_user.php sql injection

A vulnerability was determined in code-projects Automated Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/updateuser.php. This manipulation of the argument Password causes sql injection. The attack is possible to be carried out remotely. The exploit has...

CVE-2025-11667

The CVE-2025-11667 entry concerns code-projects Automated Voting System 1.0. Affected component: the server-side code in /admin/add_candidate_modal.php. The vulnerability is SQL injection triggered by manipulating the firstname parameter, allowing remote exploitation. Multiple connected sources c...

CVE-2025-11667 code-projects Automated Voting System add_candidate_modal.php. sql injection

A vulnerability was found in code-projects Automated Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/addcandidatemodal.php.. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has...

CVE-2025-11605

A vulnerability was identified in code-projects Client Details System 1.0. Impacted is an unknown function of the file /admin/update-profile.php. Such manipulation of the argument uid leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used...

CVE-2025-11613 code-projects Simple Food Ordering System addcategory.php sql injection

A vulnerability was found in code-projects Simple Food Ordering System 1.0. Affected is an unknown function of the file /addcategory.php. The manipulation of the argument cname results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...