15 matches found
PT-2025-44041
A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...
PHPGurukul Small CRM SQL注入漏洞
Small CRM is a customer relationship management system. Small CRM suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter email in the file /forgot-password.php. An attacker can exploit this vulnerability to...
CVE-2025-5639 PHPGurukul Notice Board System forgot-password.php sql injection
A vulnerability was found in PHPGurukul Notice Board System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has be...
Auto Taxi Stand Management System /admin/forgot-password.php File SQL Injection Vulnerability
Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /admin/forgot-password.php. An...
CVE-2025-4907
A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The...
CVE-2025-4875
A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-4875 Campcodes Online Shopping Portal forgot-password.php sql injection
A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-4757 PHPGurukul Beauty Parlour Management System forgot-password.php sql injection
A vulnerability was found in PHPGurukul Beauty Parlour Management System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploi...
Projectworlds Student Project Allocation System 注入漏洞
Projectworlds Student Project Allocation System is a student project allocation system from Projectworlds India. Projectworlds Student Project Allocation System version 1.0 has an injection vulnerability that originates from SQL injection due to the operation of parameter PatBloodGroup1 in file...
PT-2024-39551 · Unknown · Sourcecodester Advocate Office Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Advocate Office Management System version 1.0 Description: A critical issue has been found, affecting an unknown function of the file /control/forgot pass.php. The manipulation of the username argument leads to SQL injection...
PT-2024-35780 · Unknown · Phpgurukul Zoo Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Zoo Management System version 2.1 Description: A critical issue has been found in the PHPGurukul Zoo Management System, affecting an unknown functionality of the file /admin/forgot-password.php. The manipulation of the email argume...
PT-2024-21985 · Unknown · Campcodes Complete Online Beauty Parlor Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online Beauty Parlor Management System version 1.0 Description: A critical issue affects the processing of the file "/admin/forgot-password.php". The manipulation of the email argument leads to SQL injection. The attack can...
PT-2023-10250 · Unknown · Ezpublish-Modern-Legacy
Name of the Vulnerable Software and Affected Versions: ezpublish-modern-legacy versions prior to 1.0 Description: A vulnerability was found in the processing of the file kernel/user/forgotpassword.php, leading to weak password recovery. The complexity of an attack is rather high, and the...
PT-2021-10732 · Unknown · Phpgurukul Hospital Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: The issue concerns a SQL injection vulnerability located in the hmsforgot-password.php file. This vulnerability can be exploited by remote unauthenticated users to obtain sensitiv...
MetalGenix GeniXCMS 'forgotpassword.php' File Denial of Service Vulnerability
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A security vulnerability exists in the forgotpassword.php file in MetalGenix GeniXCMS version 1.0.2. A...