PT-2025-37775

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A SQL injection flaw exists due to the manipulation of the firstname argument in the /admin/save user.php file. This manipulation can be carried out remotely. The...

CVE-2025-10075

A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2025-10075

A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2025-10075

A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2025-10075

SourceCodester Online Polling System 1.0 contains a cross-site scripting (XSS) flaw in /manage-profile.php triggered by manipulating the firstname parameter. The vulnerability can be exploited remotely and exploits have been released publicly. Multiple sources (NVD, Red Hat, CNNVD, PT-Security, a...

CVE-2025-10075 SourceCodester Online Polling System manage-profile.php cross site scripting

A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2025-10075 SourceCodester Online Polling System manage-profile.php cross site scripting

A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2025-9786

A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teachersignup.php. Performing manipulation of the argument firstname results in sql injection. The attack can be initiated remotely. The exploit has been made public and coul...

CVE-2025-9794

A flaw has been found in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/postransac.php?action=add. Executing manipulation of the argument cash/firstname can lead to sql injection. The attack may be performed from remote. The explo...

CVE-2025-9794 Campcodes Computer Sales and Inventory System pos_transac.php sql injection

A flaw has been found in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/postransac.php?action=add. Executing manipulation of the argument cash/firstname can lead to sql injection. The attack may be performed from remote. The explo...

CVE-2025-9786

A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teachersignup.php. Performing manipulation of the argument firstname results in sql injection. The attack can be initiated remotely. The exploit has been made public and coul...

CVE-2025-9786 Campcodes Online Learning Management System teacher_signup.php sql injection

A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teachersignup.php. Performing manipulation of the argument firstname results in sql injection. The attack can be initiated remotely. The exploit has been made public and coul...

PT-2025-35496

Name of the Vulnerable Software and Affected Versions: Campcodes Online Learning Management System version 1.0 Description: A SQL injection issue exists in Campcodes Online Learning Management System version 1.0. The issue is located in the /teacher signup.php file, within an unknown function...

CampCodes Computer Sales and Inventory System 安全漏洞

CampCodes Computer Sales and Inventory System is a computerized sales and inventory system from CampCodes Philippines. A security vulnerability exists in CampCodes Computer Sales and Inventory System version 1.0, which stems from a SQL injection due to incorrect manipulation of the parameter...

PT-2025-35510

Name of the Vulnerable Software and Affected Versions: Campcodes Computer Sales and Inventory System version 1.0 Description: A flaw exists in Campcodes Computer Sales and Inventory System that may allow for SQL injection. The issue is located in an unknown function within the /pages/pos...

CVE-2023-41522

Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createStudents.php via the Id, firstname, and admissionNumber parameters...

Code-Projects Online Ordering System 注入漏洞

Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in code-projects Online Ordering System version 1.0, which originates from a SQL injection due to the incorrect operation of the parameter firstname in the file /signup.ph...

Code-Projects Church Donation System 注入漏洞

Code-Projects Church Donation System is an open source church donation system by Code-Projects. An injection vulnerability exists in Code-Projects Church Donation System version 1.0, which stems from an SQL injection attack due to the incorrect operation of the parameter firstname in the file...

CVE-2025-7481

A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /users/profile.php. The manipulation of the argument firstname leads to sql injection. It is possible to initiate the attack remotely. The...

PHPGurukul Vehicle Parking Management System 注入漏洞

Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter firstname in the file /users/profile.php that lacks validation of an externally entered SQL statement. An attack...