PT-2025-20577

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description SourceCodester Client Database Management System version 1.0 is susceptible to a SQL Injection issue in the 'user delivery update.php' file. The issue is triggered throug...

CVE-2025-46189

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userordercustomerupdate.php via the orderid POST parameter...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

CVE-2025-46193

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in userproposalupdateorder.php...

CVE-2025-46188

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in superadminphpmyadmin.php...

CVE-2025-46190

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userdeliveryupdate.php via the orderid POST parameter...

CVE-2025-46188

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in the superadmin_phpmyadmin.php file. The root cause is insufficient input validation in the affected file, enabling high-impact access to confidential data, potential manipulation, and disruption (CVSS 3.1 base ...

CVE-2025-46190

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userdeliveryupdate.php via the orderid POST parameter...

CVE-2025-46193

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in userproposalupdateorder.php...

PT-2025-20576

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description The software is susceptible to a SQL Injection issue in the 'user order customer update.php' file. The issue occurs through the order id POST parameter. Exploitation of...

CVE-2025-46190

CVE-2025-46190 affects SourceCodester Client Database Management System 1.0, with a SQL Injection vulnerability in the file user_delivery_update.php exploitable via the POST parameter order_id . The CVE has a high impact (CVSS 3.1: 9.8, CRITICAL) with network attack vector, no privileges required...

PT-2025-20575

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description SourceCodester Client Database Management System version 1.0 is susceptible to SQL Injection through the superadmin phpmyadmin.php file. The issue allows for potential...

CVE-2025-46189

SourceCodester Client Database Management System 1.0 is affected by a SQL Injection in user_order_customer_update.php via the order_id POST parameter. Root cause: improper handling/validation of the order_id parameter. Impact: potential unauthorized access/modification of the database (per CVSS 3...

PT-2025-20582

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description The software is susceptible to a SQL Injection issue within the user payment update.php file. The issue occurs through the order id POST parameter. The vulnerability allo...

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...

CVE-2025-46193

Summary: CVE-2025-46193 affects SourceCodester Client Database Management System 1.0 and enables remote code execution via an arbitrary file upload in the vulnerable file path user_proposal_update_order.php. The CVSS v3.1 score is 9.8 (CRITICAL) with network attack vector, no privileges required,...

CVE-2025-46191

CVE-2025-46191 affects SourceCodester Client Database Management System 1.0, where an unauthenticated user can upload files through the uploaded_file_cancelled field in the file upload routine in user_payment_update.php . The vulnerability stems from inadequate validation: no proper file extensio...

RLSA-2024:6020 Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement during pgdump executes arbitrary SQL CVE-2024-7348 postgresql: PostgreSQL pgstatsext and pgstatsextexprs lack authorization checks CVE-2024-4317 For more detail...

RLSA-2025:1739 Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation CVE-2025-1094 For more details about the security issues, including the impact, a CVSS score,...