64 matches found
CVE-2026-10252
The CVE-2026-10252 entry concerns itsourcecode Online House Rental System 1.0. A vulnerability exists in an unknown function of /manage_tenant.php where manipulation of the ID parameter leads to SQL injection. Attacks can be initiated remotely, and the exploit has been publicly disclosed and may ...
CVE-2026-10250
The vulnerability CVE-2026-10250 affects itsourcecode Online Blood Bank Management System 1.0. An SQL injection can be triggered by manipulating the hospital argument in an unknown function of the file /admin/campsdetails.php, allowing remote exploitation. Exploit has been released publicly (expl...
CVE-2026-1159
A weakness has been identified in itsourcecode Online Frozen Foods Ordering System 1.0. This issue affects some unknown processing of the file /orderonline.php. Executing a manipulation of the argument productname can lead to sql injection. The attack can be launched remotely. The exploit has bee...
CVE-2026-1159 itsourcecode Online Frozen Foods Ordering System order_online.php sql injection
A weakness has been identified in itsourcecode Online Frozen Foods Ordering System 1.0. This issue affects some unknown processing of the file /orderonline.php. Executing a manipulation of the argument productname can lead to sql injection. The attack can be launched remotely. The exploit has bee...
CVE-2022-31879
Online Fire Reporting System 1.0 is vulnerable to SQL Injection via the date parameter...
CVE-2024-2718
A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/booking-bwdates-reports-details.php. The manipulation of the argument fromdate leads to cross site scripting. The attack ma...
CVE-2026-0577
A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /handgunner-administrator/prod.php. Executing a manipulation can lead to unrestricted upload. It is possible to launch the attack remotely. The...
EUVD-2020-21618
Malware in sbrugna...
EUVD-2025-13557
Malicious code in bioql PyPI...
EUVD-2025-28856
Malicious code in bioql PyPI...
EUVD-2024-48771
Malicious code in bioql PyPI...
EUVD-2024-48695
Malicious code in bioql PyPI...
EUVD-2022-53254
Malicious code in bioql PyPI...
CVE-2025-10480
A weakness has been identified in SourceCodester Online Student File Management System 1.0. This affects an unknown function of the file /savefile.php. Executing manipulation can lead to unrestricted upload. The attack may be launched remotely. The exploit has been made available to the public an...
CVE-2025-40690 SQL injection in PHPGurukul Online Fire Reporting System
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'teamid' parameter in the endpoint '/ofrs/admin/edit-team.php'...
Online Fire Reporting System 跨站脚本漏洞
Online Fire Reporting System is an online fire reporting system developed by Carlo Montero, an individual developer. A cross-site scripting vulnerability exists in Online Fire Reporting System version 1.2, which stems from insufficient validation of inputs for the parameters mark, status, and...
PT-2025-34729 · Unknown · 1000Projects Online Project Report Submission/Evaluation System
Name of the Vulnerable Software and Affected Versions: 1000projects Online Project Report Submission and Evaluation System version 1.0 Description: A weakness exists in an unknown functionality of the file /rse/admin/edit faculty.php?id=2. Manipulation of the Name argument causes cross site...
Modern Bag action.php file SQL injection vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter proId in file /action.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL comman...
CVE-2025-7436 Campcodes Online Recruitment Management System ajax.php sql injection
A vulnerability was found in Campcodes Online Recruitment Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/ajax.php?action=deletevacancy. The manipulation of the argument ID leads to sql injection. The attack can be initiated...
CampCodes Online Teacher Record Management System 注入漏洞
CampCodes Online Teacher Record Management System is a teacher information management system from CampCodes Philippines. Campcodes Online Teacher Record Management System version 1.0 suffers from an injection vulnerability that originates from a SQL injection due to the incorrect operation of the...