CVE-2025-13264

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /viewmagazine.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been released to the publ...

CVE-2025-13263

SourceCodester Online Magazine Management System 1.0 contains a SQL injection in /categories.php via the c parameter. The issue is remote and publicly exploitable, with PoC-style exploit references present in the CVE metadata. The vulnerability affects unknown functionality in categories.php, and...

PT-2025-47118

A vulnerability was identified in SourceCodester Online Magazine Management System 1.0. Affected by this issue is some unknown functionality of the file /categories.php. The manipulation of the argument c leads to sql injection. The attack is possible to be carried out remotely. The exploit is...

SourceCodester Online Magazine Management System SQL注入漏洞

SourceCodester Online Magazine Management System is a SourceCodester open source online magazine management system. A SQL injection vulnerability exists in SourceCodester Online Magazine Management System version 1.0, which stems from an incorrect manipulation of the parameter c in the file...

PT-2025-47119

Name of the Vulnerable Software and Affected Versions SourceCodester Online Magazine Management System version 1.0 Description A security flaw exists in SourceCodester Online Magazine Management System 1.0. The issue is located in the file /view magazine.php. Manipulation of the ID argument can...

SourceCodester Online Magazine Management System SQL注入漏洞

SourceCodester Online Magazine Management System is a SourceCodester open source online magazine management system. A SQL injection vulnerability exists in SourceCodester Online Magazine Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file...

EUVD-2021-31473

Malicious code in bioql PyPI...

CVE-2022-21179

Cross-site request forgery CSRF vulnerability in EC-CUBE plugin 'Mail Magazine Management Plugin' ver4.0.0 to 4.1.1 for EC-CUBE 4 series and ver1.0.0 to 1.0.4 for EC-CUBE 3 series allows a remote unauthenticated attacker to hijack the authentication of an administrator via a specially crafted pag...

CVE-2022-21179

Cross-site request forgery CSRF vulnerability in EC-CUBE plugin 'Mail Magazine Management Plugin' ver4.0.0 to 4.1.1 for EC-CUBE 4 series and ver1.0.0 to 1.0.4 for EC-CUBE 3 series allows a remote unauthenticated attacker to hijack the authentication of an administrator via a specially crafted pag...

CVE-2022-21179

Cross-site request forgery CSRF vulnerability in EC-CUBE plugin 'Mail Magazine Management Plugin' ver4.0.0 to 4.1.1 for EC-CUBE 4 series and ver1.0.0 to 1.0.4 for EC-CUBE 3 series allows a remote unauthenticated attacker to hijack the authentication of an administrator via a specially crafted pag...

CVE-2022-21179

The CVE-2022-21179 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in the EC-CUBE plugin Mail Magazine Management Plugin, affecting versions 4.0.0–4.1.1 (EC-CUBE 4 series) and 1.0.0–1.0.4 (EC-CUBE 3 series). A remote unauthenticated attacker can hijack an administrator’s session...

CVE-2021-44653

Online Magazine Management System 1.0 contains a SQL injection authentication bypass vulnerability. The Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to gain access as admin to the application...

Sql injection

Online Magazine Management System 1.0 contains a SQL injection authentication bypass vulnerability. The Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to gain access as admin to the application...

CVE-2021-44653

Online Magazine Management System 1.0 is vulnerable to a SQL injection in the login form that bypasses authentication, enabling an attacker to gain admin access. The root cause is a SQL injection in the login workflow, as described across multiple sources. Impact: admin-level access to the applic...

CVE-2021-44653

Online Magazine Management System 1.0 contains a SQL injection authentication bypass vulnerability. The Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to gain access as admin to the application...

PT-2021-24140 · Unknown · Online Magazine Management System

Name of the Vulnerable Software and Affected Versions: Online Magazine Management System version 1.0 Description: The issue concerns a SQL injection authentication bypass. The Admin panel authentication can be bypassed due to a SQL injection vulnerability in the login form, allowing an attacker t...