253 matches found
CVE-2025-13449 code-projects Online Shop Project login.php sql injection
A vulnerability was found in code-projects Online Shop Project 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument Password results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...
CVE-2024-44660
PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the fullname, emailid, and contactno parameters in login.php...
PT-2025-47146
Name of the Vulnerable Software and Affected Versions itsourcecode Online Voting System version 1.0 Description A flaw exists in itsourcecode Online Voting System that allows for SQL injection. This issue stems from manipulating the Username parameter within an unknown function of the /login.php...
PT-2025-47187
Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The software is susceptible to a SQL Injection issue through the user email parameter in the user login.php file. This allows for potential unauthorized access or manipulation of data. The...
Code-Projects Simple Cafe Ordering System SQL注入漏洞
Simple Cafe Ordering System is a simple coffee ordering system. The Simple Cafe Ordering System suffers from a SQL injection vulnerability that originates from the /login.php file not securely filtering the Username parameter. An attacker can exploit this vulnerability to remotely obtain sensitiv...
CVE-2024-55016
PHPGurukul Student Record Management System (v3.20) is vulnerable to SQL Injection in login.php via id and password parameters. Root cause appears to be lack of input validation/sanitization in the login flow, enabling attackers to inject SQL commands and potentially access or manipulate the data...
CVE-2025-12928
A vulnerability was detected in code-projects Online Job Search Engine 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument username/phone results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and ma...
Projectworlds Online Admission System SQL注入漏洞
Projectworlds Online Admission System is an online admission system from Projectworlds India. Projectworlds Online Admission System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter keywords in the file /processlogin.php, which could le...
CVE-2025-12098
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.8 via the 'enqueuesocialloginscript' function. This makes it possible for unauthenticated attackers to extract...
EUVD-2025-38366
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.8 via the 'enqueuesocialloginscript' function. This makes it possible for unauthenticated attackers to extract...
CVE-2025-12098 Academy LMS Pro <= 3.3.8 - Unauthenticated Sensitive Information Exposure via 'enqueue_social_login_script'
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.8 via the 'enqueuesocialloginscript' function. This makes it possible for unauthenticated attackers to extract...
PT-2025-45558
Name of the Vulnerable Software and Affected Versions Academy LMS – WordPress LMS Plugin for Complete eLearning Solution versions prior to 3.3.9 Description The Academy LMS – WordPress LMS Plugin for WordPress is susceptible to sensitive information disclosure. Specifically, the enqueue social...
WordPress plugin Academy LMS – WordPress LMS Plugin for Complete eLearning Solution 信息泄露漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plugin Acade...
PT-2025-41688
Name of the Vulnerable Software and Affected Versions SourceCodester Online Student Result System version 1.0 Description A SQL injection issue exists in the SourceCodester Online Student Result System 1.0. The flaw is located in the /login.php script, where manipulating the Username parameter ca...
CVE-2025-11434
A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing a manipulation of the argument uname can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made...
CVE-2025-11434
A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing a manipulation of the argument uname can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made...
CVE-2025-11424 code-projects Web-Based Inventory and POS System login.php sql injection
A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...
EUVD-2020-3969
Malware in sbrugna...
EUVD-2007-4095
Malware in sbrugna...
EUVD-2007-0113
Malware in sbrugna...