CVE-2026-8098

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

CVE-2026-8098

code-projects Feedback System 1.0 contains a SQL injection in an unknown function of /admin/checklogin.php triggered by manipulating the email parameter. The flaw can be exploited remotely, with exploits publicly disclosed. No remediation details are provided in the supplied documents.

CVE-2026-8098 code-projects Feedback System checklogin.php sql injection

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

CVE-2026-8098

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

Code-Projects Feedback System 注入漏洞

Code-Projects Feedback System is an open-source feedback system developed by Code-Projects. Version 1.0 of the Code-Projects Feedback System has a injection vulnerability; this vulnerability stems from the handling of the parameter 'email' in the file 'admin/checklogin.php', which may lead to SQL...

EUVD-2025-1739

Malicious code in bioql PyPI...

EUVD-2023-41365

Malicious code in bioql PyPI...

EUVD-2023-31252

Malicious code in bioql PyPI...

CVE-2025-0530

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects unknown code of the file /parse/feedbacksystem.php. The manipulation of the argument type leads to cross site scripting. The attack can be initiated remotely. The exploit...

CVE-2025-0530 code-projects Job Recruitment _feedback_system.php cross site scripting

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects unknown code of the file /parse/feedbacksystem.php. The manipulation of the argument type leads to cross site scripting. The attack can be initiated remotely. The exploit...

Code-Projects Job Recruitment 代码注入漏洞

Code-Projects Job Recruitment is a Code-Projects open source job portal. A code injection vulnerability exists in Code-Projects Job Recruitment version 1.0, which stems from the parameter type of the file /parse/feedbacksystem.php that can lead to cross-site scripting attacks...

CVE-2025-0168

A vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. This affects an unknown part of the file /parse/feedbacksystem.php. The manipulation of the argument person leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-0168 code-projects Job Recruitment _feedback_system.php sql injection

A vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. This affects an unknown part of the file /parse/feedbacksystem.php. The manipulation of the argument person leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-0168

CVE-2025-0168 affects code-projects Job Recruitment 1.0. The vulnerability is in the file /_parse/_feedback_system.php, where manipulating the parameter person leads to a SQL injection . The issue is exploitable remotely, and the exploit has been disclosed publicly. Connected documents corroborat...

PT-2025-3758 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical vulnerability has been found in code-projects Job Recruitment, affecting an unknown part of the file / parse/ feedback system.php. The manipulation of the person argument leads...

CVE-2023-37468

Feedbacksystem is a personalized feedback system for students using artificial intelligence. Passwords of users using LDAP login are stored in clear text in the database. The LDAP users password is passed unencrypted in the LoginController.scala and stored in the database when logging in for the...

CVE-2023-37468 Storing unencrypted LDAP passwords in feedbacksystem

Feedbacksystem is a personalized feedback system for students using artificial intelligence. Passwords of users using LDAP login are stored in clear text in the database. The LDAP users password is passed unencrypted in the LoginController.scala and stored in the database when logging in for the...

CVE-2023-37468 Storing unencrypted LDAP passwords in feedbacksystem

Feedbacksystem is a personalized feedback system for students using artificial intelligence. Passwords of users using LDAP login are stored in clear text in the database. The LDAP users password is passed unencrypted in the LoginController.scala and stored in the database when logging in for the...

CVE-2023-37468

The CVE-2023-37468 issue affects Feedbacksystem where LDAP usernames’ passwords are stored in clear text in the database and the LDAP password is passed unencrypted in LoginController.scala during first login. This affects only LDAP-authenticated users (local/cas login not impacted). The vulnerab...

Design/Logic Flaw

thmmniii/fbs-core is an open source feedback system for students. In versions prior to 1.5.3 when querying subresults, it is possible to query subresults from other users due to insufficient authorisation. This is only possible for logged-in users and it is not possible to associate the subresult...