CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/10/09 7:32 p.m.•5 views

CVE-2025-11553 code-projects Courier Management System add-courier.php sql injection

A weakness has been identified in code-projects Courier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-courier.php. Executing manipulation of the argument Shippername can lead to sql injection. The attack can be launched remotely. The exploit ha...

CVE•added 2025/10/09 7:2 p.m.•7 views

CVE-2025-11552

Code-projects Online Complaint Site 1.0 contains an SQL injection in the /admin/category.php file caused by unsafely handling the Category parameter. Several connected sources (CNVD-2025-23959, RH: CVE-2025-11552, NVD/NVD mirrors, CNNVD-2025-1270, EUVD-2025-33580, CVELIST, etc.) describe remote e...

8.8CVSS6.8AI score0.0004EPSS

Vulnrichment•added 2025/10/09 7:2 p.m.•1 views

CVE-2025-11552 code-projects Online Complaint Site category.php sql injection

A vulnerability was identified in code-projects Online Complaint Site 1.0. This impacts an unknown function of the file /admin/category.php. Such manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...

6.5CVSS6.8AI score0.0004EPSS

Cvelist•added 2025/10/09 7:2 p.m.•5 views

CVE-2025-11552 code-projects Online Complaint Site category.php sql injection

NVD•added 2025/10/09 6:15 p.m.•1 views

CVE-2025-11551

A vulnerability was determined in code-projects Student Result Manager 1.0. This affects an unknown function of the file src/students/Database.java. This manipulation of the argument roll/name/gpa causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly...

9.8CVSS0.0004EPSS

CVE•added 2025/10/09 6:2 p.m.•5 views

CVE-2025-11551

CVE-2025-11551 affects Code-Projects Student Result Manager 1.0. The vulnerability is caused by manipulation of arguments in src/students/Database.java (roll/name/gpa) that leads to SQL injection. It can be triggered remotely and the exploit has been publicly disclosed. Connected sources (Red Hat...

9.8CVSS6.7AI score0.0004EPSS

Cvelist•added 2025/10/09 6:2 p.m.•6 views

CVE-2025-11551 code-projects Student Result Manager Database.java sql injection

OSV•added 2025/10/09 4:16 a.m.•0 views

CVE-2025-11530

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the...

8.8CVSS5.7AI score

Exploits0References5

Cvelist•added 2025/10/09 3:32 a.m.•8 views

CVE-2025-11530 code-projects Online Complaint Site state.php sql injection

CVE•added 2025/10/09 3:32 a.m.•9 views

CVE-2025-11530

The CVE-2025-11530 entry concerns code-projects Online Complaint Site 1.0. The vulnerability is in the file /cms/admin/state.php, where manipulation of the state parameter enables an SQL injection. This is a remote-exploit scenario, with public exploit material available. Connected sources confir...

8.8CVSS6.3AI score0.0004EPSS

NVD•added 2025/10/09 1:15 a.m.•1 views

CVE-2025-11516

A weakness has been identified in code-projects Online Complaint Site 1.0. Impacted is an unknown function of the file /cms/users/complaint-details.php. Executing manipulation of the argument cid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made...

8.8CVSS0.0004EPSS

OSV•added 2025/10/09 1:15 a.m.•1 views

CVE-2025-11514

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability affects unknown code of the file /cms/users/index.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit is publicly available and...

8.8CVSS5.8AI score

Exploits0References5

Vulnrichment•added 2025/10/09 12:32 a.m.•2 views

CVE-2025-11516 code-projects Online Complaint Site complaint-details.php sql injection

6.5CVSS6.7AI score0.0004EPSS

Cvelist•added 2025/10/09 12:32 a.m.•5 views

CVE-2025-11516 code-projects Online Complaint Site complaint-details.php sql injection

EUVD•added 2025/10/09 12:32 a.m.•2 views

EUVD-2025-33257

6.5CVSS6.5AI score0.0004EPSS

Exploits1References7

CVE•added 2025/10/09 12:32 a.m.•11 views

CVE-2025-11516

CVE-2025-11516 affects code-projects Online Complaint Site 1.0, specifically the /cms/users/complaint-details.php file. The root cause is SQL injection triggered by manipulating the cid argument, enabling remote exploitation. Multiple connected sources corroborate that an attacker can remotely ex...

8.8CVSS6.4AI score0.0004EPSS

NVD•added 2025/10/09 12:15 a.m.•4 views

CVE-2025-11513

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...

9.8CVSS0.00058EPSS

Exploits1References6

OSV•added 2025/10/09 12:15 a.m.•1 views

CVE-2025-11513

9.8CVSS5.7AI score0.00058EPSS

Exploits1References6

Cvelist•added 2025/10/09 12:2 a.m.•7 views

CVE-2025-11515 code-projects Online Complaint Site register-complaint.php sql injection

A security flaw has been discovered in code-projects Online Complaint Site 1.0. This issue affects some unknown processing of the file /cms/users/register-complaint.php. Performing manipulation of the argument cid results in sql injection. It is possible to initiate the attack remotely. The explo...