18 matches found
CVE-2026-36236
SourceCodester Engineers Online Portal v1.0 is vulnerable to SQL Injection in updatepassword.php via the newpassword parameter...
EUVD-2017-11149
Malware in sbrugna...
EUVD-2025-15982
Malicious code in bioql PyPI...
EUVD-2023-57602
Malicious code in bioql PyPI...
EUVD-2025-16090
Malicious code in bioql PyPI...
EUVD-2025-16112
Malicious code in bioql PyPI...
CVE-2025-8914
Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...
CVE-2025-5252 PHPGurukul News Portal Project edit-subadmin.php sql injection
A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-subadmin.php. The manipulation of the argument emailid leads to sql injection. The attack can be initiated remotely. The exploit has...
CVE-2025-5251 PHPGurukul News Portal Project edit-subcategory.php sql injection
A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument Category leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2025-5079
A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from remote. The exploit ha...
CVE-2022-24240
ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp...
CVE-2025-5079
CVE-2025-5079 affects Campcodes Online Shopping Portal version 1.0. The vulnerability lies in the file /admin/updateorder.php where manipulation of the remark parameter can lead to a SQL injection. The attack can be performed remotely, and a published exploit exists. Impact details in connected d...
CVE-2025-5057
CVE-2025-5057 affects Campcodes Online Shopping Portal 1.0. The vulnerability is an SQL injection in the admin function, specifically in /admin/insert-product.php where manipulating the Category parameter can be exploited remotely. Multiple sources describe the issue as critical with potential im...
CVE-2025-4930
A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /my-cart.php. The manipulation of the argument billingaddress leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-4873
A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php of the component Login. The manipulation of the argument Username leads to sql injection. The attack can be launched...
CVE-2025-1859
CVE-2025-1859 affects PHPGurukul News Portal 4.1. The issue is a SQL injection in login.php caused by manipulating the id parameter, with remote exploit possibility and the exploit reportedly disclosed publicly. Multiple connected sources (NVD, Red Hat, CNVD, CNNVD, CVE listings) describe the vul...
Ibrahim Ã?AKICI - Okul Portal Haber_Oku.asp SQL Injection
Ibrahim Ã?AKICI - Okul Portal HaberOku.asp SQL Injection source: https://www.securityfocus.com/bid/24379/info Ibrahim Ã?AKICI Okul Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can exploi...
JGS-Portal 3.0.1 - 'ID' SQL Injection
source: https://www.securityfocus.com/bid/13451/info JGS-Portal is prone to an SQL injection. This issue may potentially be exploited to compromise the software or gain unauthorized access to the database. The consequences of exploitation will depend on the nature of the vulnerable SQL query and...