846 matches found
CVE-2025-10113 itsourcecode Student Information Management System index.php sql injection
A security vulnerability has been detected in itsourcecode Student Information Management System 1.0. This affects an unknown function of the file /admin/modules/room/index.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has...
CVE-2025-10102
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has been release...
CVE-2025-10102 code-projects Online Event Judging System index.php sql injection
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has been release...
PT-2025-36526
Name of the Vulnerable Software and Affected Versions: itsourcecode Student Information Management System version 1.0 Description: A security flaw exists in itsourcecode Student Information Management System 1.0. The issue involves SQL injection stemming from the manipulation of the ID argument...
PT-2025-36496
Name of the Vulnerable Software and Affected Versions: code-projects Online Event Judging System version 1.0 Description: A security flaw exists in code-projects Online Event Judging System 1.0. The issue affects an unknown function within the /index.php file. Manipulation of the Username paramet...
PT-2025-36371
Name of the Vulnerable Software and Affected Versions: Campcodes Grocery Sales and Inventory System version 1.0 Description: A cross site scripting issue exists in Campcodes Grocery Sales and Inventory System version 1.0. The issue is located in an unknown function of the file /index.php...
CVE-2025-9922
A security vulnerability has been detected in Campcodes Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. Such manipulation of the argument page leads to cross site scripting. The attack can be launched remotely. The exploit has bee...
CVE-2025-9920
A security flaw has been discovered in Campcodes Recruitment Management System 1.0. This impacts the function include of the file /admin/index.php. The manipulation of the argument page results in file inclusion. It is possible to launch the attack remotely. The exploit has been released to the...
Improper Input Validation
helm.sh/helm/v3 is vulnerable to improper input validation. The vulnerability is due to improper type validation when parsing Chart.yaml and index.yaml files, which allows an attacker to cause a panic by providing malformed YAML files...
CVE-2025-9922
A security vulnerability has been detected in Campcodes Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. Such manipulation of the argument page leads to cross site scripting. The attack can be launched remotely. The exploit has bee...
CVE-2025-9922
A security vulnerability has been detected in Campcodes Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. Such manipulation of the argument page leads to cross site scripting. The attack can be launched remotely. The exploit has bee...
CVE-2025-9922 Campcodes Sales and Inventory System index.php cross site scripting
A security vulnerability has been detected in Campcodes Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. Such manipulation of the argument page leads to cross site scripting. The attack can be launched remotely. The exploit has bee...
CVE-2025-9920
CVE-2025-9920 affects Campcodes Recruitment Management System 1.0. The vulnerability is a remote file inclusion via the include of /admin/index.php, triggered by manipulating the page parameter. Several sources describe exploitation being publicly released and feasible remotely. Practical impact ...
CVE-2025-9755
A vulnerability has been found in Khanakag-17 Library Management System up to 60ed174506094dcd166e34904a54288e5d10ff24. This affects an unknown function of the file /index.php. The manipulation of the argument msg leads to cross site scripting. Remote exploitation of the attack is possible. The...
CVE-2025-9839
The CVE-2025-9839 issue affects itsourcecode Student Information Management System 1.0. Affected component/file: /admin/modules/course/index.php, where manipulating the ID argument leads to an SQL injection. Remote exploitation is possible, and public exploits are reported. Multiple connected sou...
CVE-2025-9839 itsourcecode Student Information Management System index.php sql injection
A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possibl...
CVE-2025-9755
A vulnerability has been found in Khanakag-17 Library Management System up to 60ed174506094dcd166e34904a54288e5d10ff24. This affects an unknown function of the file /index.php. The manipulation of the argument msg leads to cross site scripting. Remote exploitation of the attack is possible. The...
CVE-2025-9755
A vulnerability has been found in Khanakag-17 Library Management System up to 60ed174506094dcd166e34904a54288e5d10ff24. This affects an unknown function of the file /index.php. The manipulation of the argument msg leads to cross site scripting. Remote exploitation of the attack is possible. The...
CampCodes Online Feeds Product Inventory System 安全漏洞
CampCodes Online Feeds Product Inventory System is an online feeds product inventory system from CampCodes Philippines. A security vulnerability exists in CampCodes Online Feeds Product Inventory System version 1.0, which originates from a SQL injection due to incorrect manipulation of the...
SourceCodester Advanced School Management System 安全漏洞
SourceCodester Advanced School Management System is an advanced school management system from SourceCodester open source. A security vulnerability exists in SourceCodester Advanced School Management System version 1.0, which originates from a SQL injection due to a misbehavior of parameter q in...