3482 matches found
CVE-2025-15050
CVE-2025-15050 affects code-projects Student File Management System 1.0. The vulnerability arises from manipulation of the File argument in the /save_file.php (also reported as /save file.php) allowing unrestricted file uploads. Exploitation is remote and publicly disclosed. Several sources (incl...
CVE-2025-15050 code-projects Student File Management System save_file.php unrestricted upload
A security vulnerability has been detected in code-projects Student File Management System 1.0. This affects an unknown part of the file /savefile.php. Such manipulation of the argument File leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed publicly...
PT-2025-52866
Name of the Vulnerable Software and Affected Versions code-projects Student Information System version 1.0 Description A security issue exists in code-projects Student Information System 1.0. The issue involves cross site scripting, potentially allowing remote execution of malicious code...
CVE-2025-15049
A vulnerability was identified in code-projects Online Farm System 1.0. Affected is an unknown function of the file /addProduct.php. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...
CVE-2025-15049 code-projects Online Farm System addProduct.php sql injection
A vulnerability was identified in code-projects Online Farm System 1.0. Affected is an unknown function of the file /addProduct.php. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...
Code-Projects Online Farm System SQL注入漏洞
Code-Projects Online Farm System is a Code-Projects open source online farm system. Code-Projects Online Farm System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Username in the file /addProduct.php, which could lead to a SQL...
CVE-2025-15012
CVE-2025-15012 affects Code-Projects Refugee Food Management System 1.0. The vulnerability resides in an unknown function within /home/home.php, where manipulation of the argument a enables SQL injection. Exploitation is remote and the exploit has been publicly disclosed. Summary from multiple so...
CVE-2025-15011
CVE-2025-15011 affects Simple Stock System 1.0. The vulnerability resides in /logout.php where manipulating the uname parameter triggers a SQL injection. Multiple connected sources confirm remote exposure and that the exploit is public, enabling potential unauthorized access and data impact (CVE ...
Code-Projects Refugee Food Management System SQL注入漏洞
Code-Projects Refugee Food Management System is an open source refugee food management system from Code-Projects. A SQL injection vulnerability exists in Code-Projects Refugee Food Management System version 1.0, which stems from a misbehavior of parameter a in file /home/home.php, which could lea...
CVE-2025-14968 code-projects Simple Stock System update.php sql injection
A security flaw has been discovered in code-projects Simple Stock System 1.0. Affected by this issue is some unknown functionality of the file /market/update.php. The manipulation of the argument email results in sql injection. The attack can be launched remotely. The exploit has been released to...
CVE-2025-14968
CVE-2025-14968 affects Code-Projects Simple Stock System 1.0, specifically the /market/update.php file. The vulnerability arises from mishandling the email parameter, enabling SQL injection. The issue is exploitable remotely and an exploit has been publicly released. Multiple connected sources co...
CVE-2025-14962 code-projects Simple Stock System chatuser.php cross site scripting
A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown function of the file /market/chatuser.php. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used...
CVE-2025-14962
CVE-2025-14962 affects Code-Projects Simple Stock System 1.0. The flaw resides in an unknown function in the file /market/chatuser.php, enabling cross-site scripting. Exploitation is possible remotely and an exploit has been published. Public records (NVD, Red Hat, CVE List, EUVD, CNNVD, VulnDB e...
CVE-2025-14962 code-projects Simple Stock System chatuser.php cross site scripting
A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown function of the file /market/chatuser.php. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used...
CVE-2025-14961
CVE-2025-14961 affects code-projects Simple Blood Donor Management System 1.0. The vulnerability is an SQL injection in the /editedcampaign.php file caused by manipulating the campaignname parameter in an unknown function. Exploitation can be remote, and publicly available exploits exist. Multipl...
CVE-2025-14960 code-projects Simple Blood Donor Management System editeddonor.php sql injection
A security vulnerability has been detected in code-projects Simple Blood Donor Management System 1.0. Impacted is an unknown function of the file /editeddonor.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-14960 code-projects Simple Blood Donor Management System editeddonor.php sql injection
A security vulnerability has been detected in code-projects Simple Blood Donor Management System 1.0. Impacted is an unknown function of the file /editeddonor.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-14959 code-projects Simple Stock System signup.php sql injection
A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available...
CVE-2025-14959
The CVE-2025-14959 entry affects code-projects Simple Stock System 1.0. The vulnerability is in the signup flow, specifically in the handling of the Username argument in /market/signup.php, where manipulation can lead to SQL injection. Attacks are described as remotely executable, with proof-of-c...
CVE-2025-14951
CVE-2025-14951 affects Code-Projects Scholars Tracking System 1.0. The vulnerability is in the /home.php file where manipulation of the post_content parameter enables SQL injection. It can be exploited remotely; public disclosures exist. The available connected documents corroborate impact and re...