itsourcecode College Management System SQL注入漏洞

itsourcecode College Management System is an open-source university management system developed by itsourcecode. Version 1.0 of itsourcecode College Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the email parameter in the file...

CVE-2025-63443

CVE-2025-63443 affects School Management System PHP v1.0. The vulnerability is a Cross-Site Scripting (XSS) in the login form, exploitable via the unvalidated/unsanitized password parameter sent to /login.php . The referenced sources consistently describe the issue as an XSS condition stemming fr...

CampCodes Advanced Online Voting Management System SQL注入漏洞

CampCodes Advanced Online Voting Management System is an advanced online voting management system from CampCodes Philippines, Inc. A SQL injection vulnerability exists in CampCodes Advanced Online Voting Management System version 1.0, which stems from an incorrect manipulation of the parameter...

EUVD-2025-27090

Malicious code in bioql PyPI...

AndSoft e-TMS 跨站脚本漏洞

AndSoft e-TMS is a logistics management software from the Spanish company AndSoft. A cross-site scripting vulnerability exists in AndSoft e-TMS v25.03, which stems from insufficient validation of parameters l, demo, demo2, TNTLOGIN, UO, and SuppConn in the file /clt/LOGINFRMDLG.ASP, which could...

PT-2025-38712

Name of the Vulnerable Software and Affected Versions Hostel Management System version 1.0 Description A flaw exists in the Hostel Management System that allows for remote SQL injection. The issue is located in the /justines/admin/login.php file, specifically through manipulation of the email...

PHPGurukul User Management System SQL注入漏洞

User Management System is a user management system. User Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter emailid in the file /login.php. An attacker can exploit this vulnerability to...

PT-2025-35614

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Farm Management System version 1.0 Description: A SQL injection issue exists in the /Login/login.php file due to manipulation of the uname argument. This allows for remote exploitation. The exploit is publicly available...

PT-2025-35441

Name of the Vulnerable Software and Affected Versions: Campcodes/SourceCodester Courier Management System version 1.0 Description: A SQL injection issue exists in the Login function of the /ajax.php file. Manipulation of the email argument can lead to SQL injection. The issue is remotely...

SourceCodester Simple Company Website 注入漏洞

SourceCodester Simple Company Website is a simple company website from SourceCodester, Inc. An injection vulnerability exists in SourceCodester Simple Company Website version 1.0, which originates from a SQL injection due to the incorrect operation of the parameter Username in the file...

Petrol Pump Management Software SQL Injection Vulnerability

Petrol Pump Management Software is a gasoline pump management software by mayurik individual developer. A SQL injection vulnerability exists in Petrol Pump Management Software version 1.0, which originates from a SQL injection issue in the /admin/app/logincrud.php file...

PT-2024-18348 · Sourcecodester · Sourcecodester Employee Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Management System version 1.0 Description: A critical issue was found in the system, affecting some unknown functionality of the file /Account/login.php. The manipulation of the txtusername argument leads to sql...