CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2025/07/14 12:0 a.m.•0 views

PT-2025-29430 · Code Projects · Voting System

Name of the Vulnerable Software and Affected Versions: code-projects Voting System version 1.0 Description: A critical issue exists in code-projects Voting System 1.0. The vulnerability affects an unknown functionality within the /admin/positions row.php file. Manipulation of the ID argument...

8.8CVSS6.6AI score0.00197EPSS

Positive Technologies•added 2025/07/14 12:0 a.m.•3 views

PT-2025-29449 · Code Projects · Job Diary

Name of the Vulnerable Software and Affected Versions: code-projects Job Diary version 1.0 Description: A critical issue exists in code-projects Job Diary 1.0. The manipulation of the ID argument in the /view-emp.php file leads to a SQL injection. The attack can be initiated remotely, and the...

9.8CVSS7.7AI score0.00211EPSS

Exploits1References9

CNNVD•added 2025/07/14 12:0 a.m.•1 views

Code-Projects AVL Rooms 安全漏洞

Code-Projects AVL Rooms is an AVL room system from Code-Projects open source. A security vulnerability exists in Code-Projects AVL Rooms version 1.0, which stems from SQL injection due to incorrect manipulation of the parameter firstname in the file /profile.php...

9.8CVSS7.8AI score0.00194EPSS

Positive Technologies•added 2025/07/14 12:0 a.m.•2 views

PT-2025-29431 · Code Projects · Voting System

Name of the Vulnerable Software and Affected Versions: code-projects Voting System version 1.0 Description: A critical issue has been identified in code-projects Voting System 1.0. The vulnerability is located in an unknown functionality of the /admin/positions edit.php file. Manipulation of the ...

8.8CVSS6.9AI score0.00197EPSS

CNNVD•added 2025/07/14 12:0 a.m.•1 views

Code-Projects Simple Shopping Cart 注入漏洞

Simple Shopping Cart is a simple shopping cart system. Simple Shopping Cart suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ruseremail in the file /register.php. The vulnerability can be exploited by an...

9.8CVSS7.2AI score0.00204EPSS

Positive Technologies•added 2025/07/14 12:0 a.m.•1 views

PT-2025-29440 · Code Projects · Online Appointment Booking System

Name of the Vulnerable Software and Affected Versions: code-projects Online Appointment Booking System version 1.0 Description: A critical issue exists in code-projects Online Appointment Booking System 1.0. The vulnerability is due to a SQL injection flaw within an unknown functionality of the...

9.8CVSS7.5AI score0.00291EPSS

Exploits1References12

CNNVD•added 2025/07/14 12:0 a.m.•0 views

Code-Projects Job Diary 安全漏洞

Code-Projects Job Diary is an open source job diary software from Code-Projects. A security vulnerability exists in Code-Projects Job Diary version 1.0, which originates from a SQL injection due to incorrect manipulation of the parameter ID in the file /view-cad.php...

9.8CVSS7.7AI score0.00211EPSS

CNNVD•added 2025/07/14 12:0 a.m.•2 views

Code-Projects Wedding Reservation 注入漏洞

Code-Projects Wedding Reservation is an open source wedding reservation system from Code-Projects. An injection vulnerability exists in Code-Projects Wedding Reservation version 1.0, which originates from a SQL injection due to a mishandling of the parameter lu in the file /global.php...

9.8CVSS7.8AI score0.00204EPSS

CNNVD•added 2025/07/14 12:0 a.m.•0 views

Code-Projects AVL Rooms 安全漏洞

Code-Projects AVL Rooms is an AVL room system from Code-Projects open source. A security vulnerability exists in Code-Projects AVL Rooms version 1.0, which stems from a SQL injection due to incorrect manipulation of the parameter city in the file /city.php...

9.8CVSS7.8AI score0.00187EPSS

Positive Technologies•added 2025/07/14 12:0 a.m.•2 views

PT-2025-29448 · Code Projects · Job Diary

Name of the Vulnerable Software and Affected Versions: code-projects Job Diary version 1.0 Description: A critical issue exists in code-projects Job Diary 1.0, affecting an unknown functionality within the /view-all.php file. Manipulation of the ID argument results in a SQL injection. The attack...

9.8CVSS7.5AI score0.00211EPSS

Cvelist•added 2025/07/13 8:32 p.m.•9 views

CVE-2025-7541 code-projects Online Appointment Booking System get_town.php sql injection

A vulnerability has been found in code-projects Online Appointment Booking System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /gettown.php. The manipulation of the argument countryid leads to sql injection. The attack can be launched...

NVD•added 2025/07/13 5:15 p.m.•3 views

CVE-2025-7533

A vulnerability was found in code-projects Job Diary 1.0 and classified as critical. This issue affects some unknown processing of the file /view-details.php. The manipulation of the argument jobid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...

9.8CVSS0.00277EPSS

Cvelist•added 2025/07/13 4:32 p.m.•7 views

CVE-2025-7533 code-projects Job Diary view-details.php sql injection

CVE•added 2025/07/13 4:32 p.m.•13 views

CVE-2025-7533

CVE-2025-7533 affects code-projects Job Diary 1.0. The vulnerability is a SQL injection in /view-details.php caused by unsafely handling the job_id parameter, with remote exploitation and a publicly disclosed exploit. Various sources corroborate the issue; PT Security notes there is no informatio...

9.8CVSS7.6AI score0.00277EPSS

Exploits1References5Affected Software1

CVE•added 2025/07/13 4:32 a.m.•13 views

CVE-2025-7517

CVE-2025-7517 affects code-projects Online Appointment Booking System 1.0. The vulnerability is a SQL injection in the file /getDay.php triggered by manipulating the cidval parameter. The issue is exploitable remotely and exploits have been publicly disclosed. Multiple connected sources confirm t...

9.8CVSS7.5AI score0.00277EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/07/13 4:32 a.m.•7 views

CVE-2025-7517 code-projects Online Appointment Booking System getDay.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Online Appointment Booking System 1.0. This issue affects some unknown processing of the file /getDay.php. The manipulation of the argument cidval leads to sql injection. The attack may be initiated remotely. The...

Cvelist•added 2025/07/13 3:2 a.m.•7 views

CVE-2025-7514 code-projects Modern Bag contact-list.php sql injection

A vulnerability was found in code-projects Modern Bag 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/contact-list.php. The manipulation of the argument idStatus leads to sql injection. The attack may be launched remotely. The exploit ha...

Cvelist•added 2025/07/13 2:32 a.m.•8 views

CVE-2025-7513 code-projects Modern Bag slideupdate.php sql injection

A vulnerability was found in code-projects Modern Bag 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/slideupdate.php. The manipulation of the argument idSlide leads to sql injection. The attack can be launched remotely. The...