CVE-2025-11515 code-projects Online Complaint Site register-complaint.php sql injection

A security flaw has been discovered in code-projects Online Complaint Site 1.0. This issue affects some unknown processing of the file /cms/users/register-complaint.php. Performing manipulation of the argument cid results in sql injection. It is possible to initiate the attack remotely. The explo...

CVE-2025-11514 code-projects Online Complaint Site index.php sql injection

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability affects unknown code of the file /cms/users/index.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit is publicly available and...

CVE-2025-11514

The CVE-2025-11514 entry describes a SQL injection in code-projects Online Complaint Site 1.0, via manipulation of the Username argument in /cms/users/index.php. The vulnerability arises from unsanitized input, enabling remote exploitation and data theft. Multiple sources corroborate the issue, i...

CVE-2025-11514 code-projects Online Complaint Site index.php sql injection

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability affects unknown code of the file /cms/users/index.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit is publicly available and...

Code-Projects Simple Scheduling System 安全漏洞

Code-Projects Simple Scheduling System is an open source simple scheduling system from Code-Projects. A security vulnerability exists in Code-Projects Simple Scheduling System version 1.0, which stems from the vulnerability of the Subject Description field to cross-site scripting attacks...

PT-2025-41464

Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A SQL injection issue exists in code-projects E-Commerce Website 1.0. The issue is present in an unknown function within the /pages/user index search.php file. Manipulation of the Search...

Code-Projects Student Result Manager 安全漏洞

Code-Projects Student Result Manager is a student result management tool from Code-Projects. A security vulnerability exists in Code-Projects Student Result Manager version 1.0, which stems from an incorrect manipulation of the parameter roll/name/gpa in the file src/students/Database.java, which...

CVE-2025-60302

code-projects Client Details System 1.0 is vulnerable to Cross Site Scripting XSS. When adding customer information, the client details system fills in malicious JavaScript code in the username field...

PT-2025-41450

Name of the Vulnerable Software and Affected Versions code-projects Online Complaint Site version 1.0 Description A flaw exists in code-projects Online Complaint Site 1.0 that allows for remote SQL injection. The issue is located in the file /admin/category.php and involves manipulation of the...

PT-2025-41444

Name of the Vulnerable Software and Affected Versions code-projects Simple Scheduling System version 1.0 Description The Simple Scheduling System is susceptible to Cross Site Scripting XSS through the Subject Description field. This allows for the injection of malicious scripts into the...

PT-2025-41356

Name of the Vulnerable Software and Affected Versions code-projects Online Complaint Site version 1.0 Description A flaw exists in code-projects Online Complaint Site 1.0 that allows for remote SQL injection. The issue is located in the file /cms/admin/state.php and involves manipulation of the...

CVE-2025-11513

Summary: CVE-2025-11513 affects the code-projects E-Commerce Website 1.0, specifically the /pages/supplier_update.php file. The vulnerability arises from improper handling of the supp_id parameter, enabling SQL injection. Several connected sources (CNVD, RH, CNNVD, CVE records) describe remote ex...

CVE-2025-11513 code-projects E-Commerce Website supplier_update.php sql injection

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...

EUVD-2025-33274

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...

CVE-2025-11513 code-projects E-Commerce Website supplier_update.php sql injection

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...

CVE-2025-11512 code-projects Voting System voters_add.php cross site scripting

A vulnerability was found in code-projects Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/votersadd.php. The manipulation of the argument Firstname/Lastname/Platform results in cross site scripting. The attack can be executed remotely. The exploit has...

CVE-2025-11512

CVE-2025-11512 affects code-projects Voting System 1.0. The issue is a cross-site scripting vulnerability in the file /admin/voters_add.php caused by improper handling of the Firstname/Lastname/Platform parameters. It can be exploited remotely and the exploit has been made public. Affected versio...

CVE-2025-11509

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/productadd.php. Performing manipulation of the argument prodname results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-11511 code-projects E-Commerce Website supplier_add.php sql injection

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-11511 code-projects E-Commerce Website supplier_add.php sql injection

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplieradd.php. Executing manipulation of the argument suppemail can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...