CVE-2025-9742 code-projects Human Resource Integrated System login.php sql injection

A vulnerability was identified in code-projects Human Resource Integrated System 1.0. This issue affects some unknown processing of the file /login.php. Such manipulation of the argument user/pass leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly...

CVE-2025-9741

Summary: CVE-2025-9741 affects code-projects Human Resource Integrated System 1.0, specifically the /login_query12.php file. The issue is a SQL injection caused by lack of validation of the ID parameter in that file. An attacker can remotely exploit this vulnerability, and a public exploit exists...

CVE-2025-9741 code-projects Human Resource Integrated System login_query12.php sql injection

A vulnerability was determined in code-projects Human Resource Integrated System 1.0. This vulnerability affects unknown code of the file /loginquery12.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly...

CVE-2025-9740

CVE-2025-9740 affects code-projects Human Resource Integrated System 1.0. The vulnerability is in /log_query.php where manipulation of the ID parameter enables SQL injection, with remote exploitation and public availability of the exploit. Multiple sources corroborate the issue across vendors and...

CVE-2025-9733

A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. This impacts an unknown function of the file /logintimeee.php. Performing manipulation of the argument empid results in sql injection. The attack may be initiated remotely. The exploit has been released to...

CVE-2025-9733 code-projects Human Resource Integrated System login_timeee.php sql injection

A security flaw has been discovered in code-projects Human Resource Integrated System 1.0. This impacts an unknown function of the file /logintimeee.php. Performing manipulation of the argument empid results in sql injection. The attack may be initiated remotely. The exploit has been released to...

CVE-2025-9733

CVE-2025-9733 affects code-projects Human Resource Integrated System 1.0. The vulnerable component is the file /login_timeee.php where manipulation of the parameter emp_id enables SQL injection . Root cause is insufficient validation/handling of external input in that parameter, allowing remote e...

PT-2025-35424

Name of the Vulnerable Software and Affected Versions: code-projects Human Resource Integrated System version 1.0 Description: A security flaw exists in code-projects Human Resource Integrated System version 1.0. The issue involves a SQL injection affecting an unknown function within the login...

CVE-2025-9667

Summary: CVE-2025-9667 affects code-projects Simple Grading System 1.0, specifically the Admin Panel file /delete_account.php. The vulnerability arises from improper handling of the ID parameter, allowing SQL injection that can be exploited remotely and publicly disclosed. Affected component: Sim...

CVE-2025-9665 code-projects Simple Grading System Admin Panel edit_student.php sql injection

A weakness has been identified in code-projects Simple Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /editstudent.php of the component Admin Panel. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The...

CVE-2025-9664

A security flaw has been discovered in code-projects Simple Grading System 1.0. Affected is an unknown function of the file /addstudentgrade.php of the component Admin Panel. The manipulation of the argument Add results in sql injection. It is possible to launch the attack remotely. The exploit h...

CVE-2025-9664 code-projects Simple Grading System Admin Panel add_student_grade.php sql injection

A security flaw has been discovered in code-projects Simple Grading System 1.0. Affected is an unknown function of the file /addstudentgrade.php of the component Admin Panel. The manipulation of the argument Add results in sql injection. It is possible to launch the attack remotely. The exploit h...

CVE-2025-9662

CVE-2025-9662 affects code-projects Simple Grading System 1.0, specifically the Admin Panel’s login.php. The vulnerability is a SQL injection in an unknown function of /login.php, exploitable remotely and publicly disclosed. Multiple sources corroborate an SQL injection risk impacting the authent...

CVE-2025-9662 code-projects Simple Grading System Admin Panel login.php sql injection

A vulnerability was determined in code-projects Simple Grading System 1.0. This affects an unknown function of the file /login.php of the component Admin Panel. Executing manipulation can lead to sql injection. The attack may be performed from a remote location. The exploit has been publicly...

CVE-2025-9662 code-projects Simple Grading System Admin Panel login.php sql injection

A vulnerability was determined in code-projects Simple Grading System 1.0. This affects an unknown function of the file /login.php of the component Admin Panel. Executing manipulation can lead to sql injection. The attack may be performed from a remote location. The exploit has been publicly...

CVE-2025-9610

The CVE-2025-9610 entry relates to code-projects Online Event Judging System 1.0 with a SQL injection in /create_account.php. The fname parameter manipulation leads to SQL injection, enabling remote exploitation. Multiple connected sources confirm the vulnerability and public exploitation discuss...

CVE-2025-9610 code-projects Online Event Judging System create_account.php sql injection

A vulnerability was determined in code-projects Online Event Judging System 1.0. This issue affects some unknown processing of the file /createaccount.php. This manipulation of the argument fname causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicl...

Code-Projects Student Information Management System 安全漏洞

Code-Projects Student Information Management System is a Code-Projects open source student information management system. A security vulnerability exists in Code-Projects Student Information Management System version 1.0, which originates from a cross-site scripting attack due to misuse of the...

CVE-2025-9595 code-projects Student Information Management System login.php cross site scripting

A vulnerability was found in code-projects Student Information Management System 1.0. The impacted element is an unknown function of the file /login.php. The manipulation of the argument uname results in cross site scripting. The attack may be performed from a remote location. The exploit has bee...

CVE-2025-9595

The CVE-2025-9595 entry concerns code-projects Student Information Management System v1.0. The vulnerability is a cross-site scripting flaw in an unknown function of /login.php triggered by manipulation of the uname argument. It is exploitable remotely and an exploit has been publicly released. T...