5 matches found
CVE-2025-10595
SourceCodester Online Student File Management System 1.0 contains a SQL injection in /admin/delete_user.php triggered by manipulating the user_id parameter. The issue can be exploited remotely and the exploit has been publicly disclosed. Multiple sources corroborate the vulnerability in the delet...
PT-2025-38154
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A SQL injection flaw exists in the /admin/delete student.php file due to manipulation of the stud id argument. This issue is remotely exploitable. The exploit has...
SourceCodester Online Student File Management SQL注入漏洞
SourceCodester Online Student File Management is a SourceCodester open source online student file management system. A SQL injection vulnerability exists in SourceCodester Online Student File Management version 1.0, which originates from incorrect manipulation of the parameter studentid in the fi...
CVE-2025-10479 SourceCodester Online Student File Management System index.php sql injection
A security flaw has been discovered in SourceCodester Online Student File Management System 1.0. The impacted element is an unknown function of the file /index.php. Performing manipulation of the argument studno results in sql injection. The attack may be initiated remotely. The exploit has been...
PT-2025-37765
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A weakness exists in SourceCodester Online Student File Management System 1.0 related to unrestricted file upload through manipulation of the /save file.php file an...