151 matches found
CVE-2025-56074
A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...
PT-2025-38719
Name of the Vulnerable Software and Affected Versions PHPGurukul Park Ticketing Management System version 2.0 Description A SQL Injection issue exists in the foreigner-bwdates-reports-details.php file. This allows remote attackers to execute arbitrary SQL code through the fromdate parameter in a...
Campcodes Online Beauty Parlor Management System SQL注入漏洞
CampCodes Online Beauty Parlor Management System is an online beauty parlor management system from CampCodes Philippines, Inc. Campcodes Online Beauty Parlor Management System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter...
CVE-2025-56075
The CVE-2025-56075 entry concerns a SQL Injection in PHPGurukul Park Ticketing Management System v2.0, specifically in the normal-bwdates-reports-details.php file. The vulnerability arises from unsafely handling the fromdate parameter in a POST request, enabling an attacker to inject arbitrary SQ...
CVE-2025-56075
A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...
CVE-2025-56075
A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the fromdate parameter in a POST request...
PHPGurukul Park Ticketing Management System 安全漏洞
Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the parameter fromdate in the file normal-bwdates-reports-details.php. A...
CVE-2025-40694
Stored Cross Site Scripting in Online Fire Reporting System v1.2 by PHPGurukul, that consists in a stored authenticated XSS due to the lack of propper validation of user inputs 'fromdate' and 'todate' parameters via POST at the endpoint '/ofrs/admin/bwdates-report-result.php'. This vulnerability...
CVE-2025-9919
A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects an unknown function of the file /admin/bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2025-9919
CVE-2025-9919 affects 1000projects Beauty Parlour Management System 1.0. The vulnerability is in the /admin/bwdates-reports-details.php script, where manipulating the fromdate/todate parameters leads to SQL injection. Exploitation can be performed remotely and public exploit code exists. Multiple...
CVE-2025-8988
A vulnerability has been found in SourceCodester COVID 19 Testing Management System 1.0. This vulnerability affects unknown code of the file /bwdates-report-result.php. The manipulation of the argument fromdate leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-8988
A vulnerability has been found in SourceCodester COVID 19 Testing Management System 1.0. This vulnerability affects unknown code of the file /bwdates-report-result.php. The manipulation of the argument fromdate leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-8988 SourceCodester COVID 19 Testing Management System bwdates-report-result.php sql injection
A vulnerability has been found in SourceCodester COVID 19 Testing Management System 1.0. This vulnerability affects unknown code of the file /bwdates-report-result.php. The manipulation of the argument fromdate leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-8988
SourceCodester COVID 19 Testing Management System 1.0 contains a SQL injection in /bwdates-report-result.php via the fromdate parameter. The vulnerability is exploitable remotely with exploits publicly disclosed. Affected component is unknown elsewhere in the code; no patch/fix details are provid...
CVE-2025-8988 SourceCodester COVID 19 Testing Management System bwdates-report-result.php sql injection
A vulnerability has been found in SourceCodester COVID 19 Testing Management System 1.0. This vulnerability affects unknown code of the file /bwdates-report-result.php. The manipulation of the argument fromdate leads to sql injection. The attack can be initiated remotely. The exploit has been...
PT-2025-33420 · Sourcecodester · Covid19 Testing Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester COVID 19 Testing Management System version 1.0 Description: A vulnerability exists in SourceCodester COVID 19 Testing Management System 1.0, affecting unknown code within the /bwdates-report-result.php file. Manipulation of the...
SourceCodester COVID 19 Testing Management System 注入漏洞
SourceCodester COVID 19 Testing Management System is a SourceCodester open source web-based application that provides an online platform for personal and Covid test management to manage individual testing processes and results. An injection vulnerability exists in version 1.0 of the SourceCodeste...
Online Fire Reporting System bwdates-report-result.php File SQL Injection Vulnerability
Online Fire Reporting System is an online fire reporting system. Online Fire Reporting System suffers from a SQL injection vulnerability that originates from the lack of validation of the fromdate/todate parameter in the file /admin/bwdates-report-result.php for externally entered SQL statements...
PHPGurukul Online Fire Reporting System 注入漏洞
Online Fire Reporting System is an online fire reporting system. Online Fire Reporting System suffers from a SQL injection vulnerability that originates from the lack of validation of the fromdate/todate parameter in the file /admin/bwdates-report-result.php for externally entered SQL statements...
SourceCodester Best Salon Management System 注入漏洞
SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 has an injection vulnerability, the vulnerability stems from the wrong operation of the parameter fromdate/todate in the file...