91 matches found
CVE-2026-14734 SourceCodester Class and Exam Timetabling System edit_product.php sql injection
A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /editproduct.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used...
CVE-2026-14734
SourceCodester Class and Exam Timetabling System 1.0 contains a SQL injection flaw in the edit_product.php file (vulnerable function handling ID). The vulnerability arises from manipulating the ID parameter, enabling remote exploitation. Exploitation details are published (in-the-wild PoC), with ...
CVE-2026-14734
A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /editproduct.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used...
CVE-2025-13260
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...
CVE-2025-13260
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...
CVE-2025-13260
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...
CVE-2025-13260 Campcodes Supplier Management System edit_product.php sql injection
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...
EUVD-2025-197761
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...
CVE-2025-13260 Campcodes Supplier Management System edit_product.php sql injection
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...
CVE-2025-13260
The vulnerability CVE-2025-13260 affects Campcodes Supplier Management System 1.0. It arises from improper handling of the cmbProductUnit parameter in the file /manufacturer/edit_product.php, enabling SQL injection. The issue is exploitable remotely and has been publicly disclosed. Connected sour...
PT-2025-47108
A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/edit product.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to...
CVE-2025-63448
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...
EUVD-2025-37499
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...
CVE-2025-63448
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...
CVE-2025-63448
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...
CVE-2025-63448
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...
PT-2025-44775
Name of the Vulnerable Software and Affected Versions Water Management System version 1.0 Description The Water Management System version 1.0 is susceptible to Cross Site Scripting XSS. The issue occurs in the /edit product.php?id=1 API endpoint. The id parameter is potentially vulnerable. XSS...
Water-Management-System 安全漏洞
Water-Management-System is an inventory management system by the individual developer Dikshant Naik. A security vulnerability exists in Water-Management-System version 1.0, which originates from cross-site scripting in the file /editproduct.php?id=1...
CVE-2025-63448
Water Management System v1.0 is reported vulnerable to Cross Site Scripting (XSS) in /edit_product.php?id=1. Concrete details appear across multiple sources (NVD, Red Hat, ENISA, CIRCL, CNNVD, CVE Lists) confirming a XSS issue affecting the /edit_product.php endpoint. The CVSS v3.1 base score is ...
CVE-2025-63448
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...