PT-2025-4084 · Codezips · Codezips Gym Management System

Name of the Vulnerable Software and Affected Versions: Codezips Gym Management System version 1.0 Description: A critical issue affects the processing of the file "/dashboard/admin/updateplan.php". The manipulation of the planid argument leads to SQL injection. The attack can be initiated remotel...

CVE-2025-0803

A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /dashboard/admin/submitplannew.php. The manipulation of the argument planid leads to sql injection. The attack may be launched...

PT-2024-31908 · Testlink · Testlink

Name of the Vulnerable Software and Affected Versions: TestLink version 1.9.20 Description: The issue is related to Incorrect Access Control in the TestPlan editing section. When a new TestPlan is created, an ID with an incremental value is automatically generated. Using the edit function, it is...

CVE-2023-5030

A vulnerability has been found in Tongda OA up to 11.10 and classified as critical. This vulnerability affects unknown code of the file general/hr/recruit/plan/delete.php. The manipulation of the argument PLANID leads to sql injection. The exploit has been disclosed to the public and may be used...

TONGDA Office Anywhere SQL Injection Vulnerability

TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 11.10 and earlier versions, which stems from a SQL injection vulnerability in the parameter PLANID...