Lucene search
K

15 matches found

Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.6 views

PT-2025-44041

A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

9.8CVSS7.2AI score0.00454EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/09/27 12:0 a.m.4 views

PHPGurukul Small CRM SQL注入漏洞

Small CRM is a customer relationship management system. Small CRM suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter email in the file /forgot-password.php. An attacker can exploit this vulnerability to...

9.8CVSS8.1AI score0.00387EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/05 5:31 a.m.21 views

CVE-2025-5639 PHPGurukul Notice Board System forgot-password.php sql injection

A vulnerability was found in PHPGurukul Notice Board System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has be...

7.5CVSS0.00454EPSS
Exploits1References5
CNVD
CNVD
added 2025/05/22 12:0 a.m.1 views

Auto Taxi Stand Management System /admin/forgot-password.php File SQL Injection Vulnerability

Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /admin/forgot-password.php. An...

9.8CVSS8.3AI score0.00478EPSS
Exploits1References1
OSV
OSV
added 2025/05/19 3:15 a.m.4 views

CVE-2025-4907

A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The...

9.8CVSS5.8AI score0.00478EPSS
Exploits1References5
OSV
OSV
added 2025/05/18 1:15 p.m.3 views

CVE-2025-4875

A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS5.8AI score0.00445EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/05/18 12:31 p.m.22 views

CVE-2025-4875 Campcodes Online Shopping Portal forgot-password.php sql injection

A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00445EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/05/16 7:31 a.m.7 views

CVE-2025-4757 PHPGurukul Beauty Parlour Management System forgot-password.php sql injection

A vulnerability was found in PHPGurukul Beauty Parlour Management System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploi...

7.5CVSS7.6AI score0.00421EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/05/09 12:0 a.m.2 views

Projectworlds Student Project Allocation System 注入漏洞

Projectworlds Student Project Allocation System is a student project allocation system from Projectworlds India. Projectworlds Student Project Allocation System version 1.0 has an injection vulnerability that originates from SQL injection due to the operation of parameter PatBloodGroup1 in file...

9.8CVSS7.8AI score0.00438EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/09/28 12:0 a.m.3 views

PT-2024-39551 · Unknown · Sourcecodester Advocate Office Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Advocate Office Management System version 1.0 Description: A critical issue has been found, affecting an unknown function of the file /control/forgot pass.php. The manipulation of the username argument leads to SQL injection...

9.8CVSS7.9AI score0.00628EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/05/26 12:0 a.m.5 views

PT-2024-35780 · Unknown · Phpgurukul Zoo Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Zoo Management System version 2.1 Description: A critical issue has been found in the PHPGurukul Zoo Management System, affecting an unknown functionality of the file /admin/forgot-password.php. The manipulation of the email argume...

9.8CVSS7.9AI score0.00482EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.4 views

PT-2024-21985 · Unknown · Campcodes Complete Online Beauty Parlor Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Beauty Parlor Management System version 1.0 Description: A critical issue affects the processing of the file "/admin/forgot-password.php". The manipulation of the email argument leads to SQL injection. The attack can...

6.5CVSS7.2AI score0.00496EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2023/01/19 12:0 a.m.5 views

PT-2023-10250 · Unknown · Ezpublish-Modern-Legacy

Name of the Vulnerable Software and Affected Versions: ezpublish-modern-legacy versions prior to 1.0 Description: A vulnerability was found in the processing of the file kernel/user/forgotpassword.php, leading to weak password recovery. The complexity of an attack is rather high, and the...

7.5CVSS4.3AI score0.00591EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2021/06/22 12:0 a.m.6 views

PT-2021-10732 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: The issue concerns a SQL injection vulnerability located in the hmsforgot-password.php file. This vulnerability can be exploited by remote unauthenticated users to obtain sensitiv...

7.5CVSS7.6AI score0.02188EPSS
Exploits1References2
CNVD
CNVD
added 2017/05/09 12:0 a.m.4 views

MetalGenix GeniXCMS 'forgotpassword.php' File Denial of Service Vulnerability

MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A security vulnerability exists in the forgotpassword.php file in MetalGenix GeniXCMS version 1.0.2. A...

9.1CVSS7.1AI score0.01618EPSS
Exploits0References1
Rows per page
Query Builder