CVE-2024-11995

A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /pagamento.php. The manipulation of the argument total leads to cross site scripting. The attack can be launched remotely. The exploit...

CVE-2024-50969

A Reflected cross-site scripting XSS vulnerability in browse.php of Code-projects Jonnys Liquor 1.0 allows remote attackers to inject arbitrary web scripts or HTML via the search parameter...

CVE-2023-42307

Cross Site Scripting XSS vulnerability in Code-Projects Exam Form Submission 1.0 allows attackers to run arbitrary code via "Subject Name" and "Subject Code" section...

CVE-2023-42253

Code-Projects Vehicle Management 1.0 is vulnerable to Cross Site Scripting XSS in Add Accounts via Invoice No, To, and Mammul...

CVE-2023-46021

SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46019

Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...

CVE-2023-46017

SQL Injection vulnerability in receiverLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'remail' and 'rpassword' parameters...

CVE-2023-46016

Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...

CVE-2023-46014

SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters...

CVE-2023-7140

A vulnerability was found in code-projects Client Details System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/manage-users.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2025-4892

A vulnerability was found in code-projects Police Station Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function criminal::remove of the file source.cpp of the component Delete Record. The manipulation of the argument No leads to stack-based buffer...

CVE-2025-4890 code-projects Tourism Management System Login User LoginUser stack-based overflow

A vulnerability was found in code-projects Tourism Management System 1.0 and classified as critical. This issue affects the function LoginUser of the component Login User. The manipulation of the argument username/password leads to stack-based buffer overflow. Attacking locally is a requirement...

Code-Projects Police Station Management System 安全漏洞

Code-Projects Police Station Management System is an open source police station management system from Code-Projects. A security vulnerability exists in Code-Projects Police Station Management System version 1.0, which is caused by a buffer overflow due to incorrect manipulation of parameter N in...

Code-Projects Tourism Management System 安全漏洞

Code-Projects Tourism Management System is an open source tourism management system from Code-Projects. A security vulnerability exists in Code-Projects Tourism Management System version 1.0, which is caused by a buffer overflow due to incorrect manipulation of the username/password parameters in...

Code-Projects Police Station Management System 安全漏洞

Code-Projects Police Station Management System is an open source police station management system from Code-Projects. A security vulnerability exists in Code-Projects Police Station Management System version 1.0, which is caused by a stack buffer overflow due to an incorrect manipulation of the...

CVE-2025-4745 code-projects Employee Record System current_employees.php cross site scripting

A vulnerability, which was classified as problematic, was found in code-projects Employee Record System 1.0. This affects an unknown part of the file currentemployees.php. The manipulation of the argument employeedid/firstname/middlename/lastname leads to cross site scripting. It is possible to...

CVE-2025-4743

CVE-2025-4743 concerns Code-Projects’ Employee Record System v1.0. The vulnerability resides in the /dashboard/getData.php endpoint, where unsafely handling the keywords parameter enables SQL injection. Multiple connected sources (CNVD, RH, NVD, CVE listing, CNNVD, and others) corroborate that th...

CVE-2025-4743 code-projects Employee Record System getData.php sql injection

A vulnerability classified as critical was found in code-projects Employee Record System 1.0. Affected by this vulnerability is an unknown functionality of the file /dashboard/getData.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The...

Code-Projects Employee Record System 代码注入漏洞

Code-Projects Employee Record System is a Code-Projects open source employee record system. Code-Projects Employee Record System version 1.0 has a code injection vulnerability , the vulnerability stems from the currentemployees.php file currentemployeeid/firstname/middlename/lastname parameters a...