CVE-2025-11116

The CVE-2025-11116 entry concerns code-projects Simple Scheduling System 1.0. A flaw exists in /add.home.php where manipulating the faculty parameter enables SQL injection, with remote exploitation and publicly available exploit details. Several connected sources corroborate a SQL injection impac...

CVE-2025-11116 code-projects Simple Scheduling System add.home.php sql injection

A vulnerability was found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /add.home.php. The manipulation of the argument faculty results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used. Other...

CVE-2025-11116 code-projects Simple Scheduling System add.home.php sql injection

A vulnerability was found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /add.home.php. The manipulation of the argument faculty results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used. Other...

CVE-2025-11115 code-projects Simple Scheduling System addtime.php sql injection

A vulnerability has been found in code-projects Simple Scheduling System 1.0. Affected by this issue is some unknown functionality of the file /addtime.php. The manipulation of the argument starttime/endtime leads to sql injection. Remote exploitation of the attack is possible. The exploit has be...

CVE-2025-11115 code-projects Simple Scheduling System addtime.php sql injection

A vulnerability has been found in code-projects Simple Scheduling System 1.0. Affected by this issue is some unknown functionality of the file /addtime.php. The manipulation of the argument starttime/endtime leads to sql injection. Remote exploitation of the attack is possible. The exploit has be...

CVE-2025-11107 code-projects Simple Scheduling System addcourse.php sql injection

A vulnerability was found in code-projects Simple Scheduling System 1.0. This issue affects some unknown processing of the file /schedulingsystem/addcourse.php. Performing manipulation of the argument corcode results in sql injection. The attack is possible to be carried out remotely. The exploit...

CVE-2025-11107

The CVE-2025-11107 vulnerability affects code-projects Simple Scheduling System 1.0. An SQL injection exists in the addcourse.php handling of the corcode parameter, allowing remote exploitation. The exploit is public and could be used against exposed instances. Documents describe this as a remote...

CVE-2025-11106 code-projects Simple Scheduling System addfaculty.php sql injection

A vulnerability has been found in code-projects Simple Scheduling System 1.0. This vulnerability affects unknown code of the file /schedulingsystem/addfaculty.php. Such manipulation of the argument falname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed...

CVE-2025-11106 code-projects Simple Scheduling System addfaculty.php sql injection

A vulnerability has been found in code-projects Simple Scheduling System 1.0. This vulnerability affects unknown code of the file /schedulingsystem/addfaculty.php. Such manipulation of the argument falname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed...

CVE-2025-11105 code-projects Simple Scheduling System addsubject.php sql injection

A flaw has been found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /schedulingsystem/addsubject.php. This manipulation of the argument subcode causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be...

CVE-2025-11094

CVE-2025-11094 affects code-projects E-Commerce Website 1.0. The vulnerability resides in the pages/admin_product_details.php script, where manipulation of the prod_id parameter leads to a SQL injection. The issue is exploitable remotely and has publicly disclosed exploit information. Multiple so...

CVE-2025-11094 code-projects E-Commerce Website admin_product_details.php sql injection

A security vulnerability has been detected in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/adminproductdetails.php. Such manipulation of the argument prodid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicl...

CVE-2025-11094 code-projects E-Commerce Website admin_product_details.php sql injection

A security vulnerability has been detected in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/adminproductdetails.php. Such manipulation of the argument prodid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicl...

CVE-2025-11037

A security flaw has been discovered in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/adminindexsearch.php. Performing manipulation of the argument Search results in sql injection. The attack may be initiated remotely. The exploit has been released to th...

CVE-2025-11074 code-projects Project Monitoring System login.php sql injection

A flaw has been found in code-projects Project Monitoring System 1.0. The impacted element is an unknown function of the file /login.php. This manipulation of the argument username/password causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

CVE-2025-11074

Affected software: code-projects Project Monitoring System 1.0. Vulnerability: SQL injection in the login.php file caused by unsafe handling of username/password inputs, enabling remote exploitation. Root cause/condition: Manipulation of the parameters in /login.php leads to SQL injection; exploi...

CVE-2025-11066

A flaw has been found in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/bidlist.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-11066

The CVE-2025-11066 entry concerns code-projects Online Bidding System 1.0. A SQL injection vulnerability exists in the /administrator/bidlist.php file, triggered by manipulating the ID parameter in SQL queries. This can be exploited remotely and, in public references, the exploit has been publish...

CVE-2025-11066 code-projects Online Bidding System bidlist.php sql injection

A flaw has been found in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/bidlist.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-11066 code-projects Online Bidding System bidlist.php sql injection

A flaw has been found in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/bidlist.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...