CVE-2025-7563

A vulnerability classified as critical was found in PHPGurukul Online Fire Reporting System 1.2. Affected by this vulnerability is an unknown functionality of the file /admin/completed-requests.php. The manipulation of the argument teamid leads to sql injection. The attack can be launched remotel...

CVE-2025-7480

A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this issue is some unknown functionality of the file /users/signup.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The...

CVE-2025-7469

A vulnerability was found in Campcodes Sales and Inventory System 1.0 and classified as critical. This issue affects some unknown processing of the file /pages/productadd.php. The manipulation of the argument prodname leads to sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-7594

A vulnerability was found in code-projects Job Diary 1.0. It has been classified as critical. This affects an unknown part of the file /view-emp.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-7591 PHPGurukul Dairy Farm Shop Management System view-invoice.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file view-invoice.php. The manipulation of the argument invid leads to sql injection. It is possible to launch the attack remotely. The exploit...

CVE-2025-7539

A vulnerability, which was classified as critical, has been found in code-projects Online Appointment Booking System 1.0. This issue affects some unknown processing of the file /getdoctordaybooking.php. The manipulation of the argument cid leads to sql injection. The attack may be initiated...

CVE-2025-7516

A vulnerability classified as critical was found in code-projects Online Appointment Booking System 1.0. This vulnerability affects unknown code of the file /cancelbookingpatient.php. The manipulation of the argument appointment leads to sql injection. The attack can be initiated remotely. The...

CVE-2025-7484 PHPGurukul Vehicle Parking Management System view-outgoingvehicle-detail.php sql injection

A vulnerability classified as critical has been found in PHPGurukul Vehicle Parking Management System 1.13. Affected is an unknown function of the file /admin/view-outgoingvehicle-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to launch the attack...

CVE-2025-7480

CVE-2025-7480 affects PHPGurukul Vehicle Parking Management System version 1.13. The flaw is a SQL injection in the file /users/signup.php, caused by unsafely handling the email parameter. Descriptions across CNVD, CNNVD, Red Hat, and CVE sources confirm remote exploitation potential and that the...

CVE-2025-7466

CVE-2025-7466 affects 1000projects ABC Courier Management 1.0. The vulnerability is an SQL injection in an unknown functionality of the file /add_dealerrequest.php, caused by manipulating the Name parameter. The issue may be exploitable remotely and the exploit has been disclosed publicly. Multip...

CVE-2025-7197

A vulnerability classified as critical has been found in code-projects Jonnys Liquor 1.0. This affects an unknown part of the file /admin/delete-row.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

CVE-2025-7135

A vulnerability, which was classified as critical, has been found in Campcodes Online Recruitment Management System 1.0. This issue affects some unknown processing of the file /admin/ajax.php?action=savevacancy. The manipulation of the argument ID leads to sql injection. The attack may be initiat...

CVE-2025-7193

A vulnerability was found in itsourcecode Agri-Trading Online Shopping System up to 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/suppliercontroller.php. The manipulation of the argument supplier leads to sql injection. It is possible to launch the...

CVE-2025-7189 code-projects Chat System send_message.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Chat System 1.0. Affected by this issue is some unknown functionality of the file /user/sendmessage.php. The manipulation of the argument msg leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2025-7176

CVE-2025-7176 affects PHPGurukul Hospital Management System 1.0. The vulnerability is an SQL injection in the file view-medhistory.php exploitable via the viewid parameter. Multiple sources describe remote exploitation with publicly disclosed exploits, indicating a high-risk impact on confidentia...

CVE-2025-7161 PHPGurukul Zoo Management System add-normal-ticket.php sql injection

A vulnerability classified as critical was found in PHPGurukul Zoo Management System 2.1. This vulnerability affects unknown code of the file /admin/add-normal-ticket.php. The manipulation of the argument cprice leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-7157

CVE-2025-7157 affects Code-Projects Online Note Sharing 1.0. A vulnerability in /login.php arises from improper handling of the username and password parameters, enabling SQL injection. The flaw is exploitable remotely and has had exploits disclosed publicly. Multiple sources confirm the issue an...

CVE-2025-7143

CVE-2025-7143 affects SourceCodester Best Salon Management System 1.0, impacting the /panel/edit-tax.php file in the Update Tax Page. The vulnerability is a cross‑site scripting flaw triggered by manipulating the Tax Name parameter, allowing remote initiation. Exploitation is disclosed publicly i...

CVE-2025-7119 Campcodes Complaint Management System index.php sql injection

A vulnerability has been found in Campcodes Complaint Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /users/index.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. T...

CVE-2025-7060

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...