Code-Projects Simple Car Rental System 注入漏洞

Code-Projects Simple Car Rental System is an open source car rental software from Code-Projects. An injection vulnerability exists in Code-Projects Simple Car Rental System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...

PHPGurukul Vehicle Parking Management System 注入漏洞

Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter email in the file /users/forgot-password.php that lacks validation of externally entered SQL statements. An...

Advantech iView SQL注入漏洞

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. An SQL injection vulnerability exists in the Advantech iView CUtils.checkSQLInjection function, which can be exploited by an attacker to cause an information disclosure or...

CampCodes Online Movie Theater Seat Reservation 注入漏洞

CampCodes Online Movie Theater Seat Reservation is an online theater seat reservation system from CampCodes Philippines. An injection vulnerability exists in CampCodes Online Movie Theater Seat Reservation version 1.0, which stems from a parameter mid operation resulting in SQL injection...

CampCodes Online Movie Theater Seat Reservation 注入漏洞

CampCodes Online Movie Theater Seat Reservation is an online theater seat reservation system from CampCodes Philippines. An injection vulnerability exists in CampCodes Online Movie Theater Seat Reservation version 1.0, which stems from a parameter ID manipulation leading to SQL injection...

VulnCheck KEV: CVE-2025-25257

An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.7, FortiWeb 7.2.0 through 7.2.10, FortiWeb 7.0.0 through 7.0.10 allows an unauthenticated attacker to execu...

CampCodes Online Recruitment Management System 安全漏洞

CampCodes Online Recruitment Management System is a recruitment management system from CampCodes Philippines, Inc. A security vulnerability exists in CampCodes Online Recruitment Management System version 1.0, which originates from a parameter ID operation leading to SQL injection...

CampCodes Online Movie Theater Seat Reservation 注入漏洞

CampCodes Online Movie Theater Seat Reservation is an online theater seat reservation system from CampCodes Philippines. An injection vulnerability exists in CampCodes Online Movie Theater Seat Reservation version 1.0, which stems from SQL injection due to incorrect manipulation of the parameter ...

CVE-2025-53549 Matrix Rust SDK allows SQL injection in the EventCache implementation

The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that...

CRYPTTECH CryptoLog 安全漏洞

CRYPTTECH CryptoLog is a log management system from the Turkish company CRYPTTECH. A security vulnerability exists in CRYPTTECH CryptoLog that stems from SQL Injection and Command Injection issues that could lead to remote code execution...

CampCodes Payroll Management System 注入漏洞

CampCodes Payroll Management System is a payroll management system from CampCodes Philippines. An injection vulnerability exists in CampCodes Payroll Management System version 1.0, which is caused by a SQL injection due to incorrect manipulation of the parameter ID in file/ajax.php...

CVE-2025-7191

A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-47178

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an authorized attacker to execute code over an adjacent network...

CVE-2025-7185

A vulnerability was found in code-projects Library System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /approve.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...

CVE-2025-7155

A vulnerability, which was classified as critical, was found in PHPGurukul Online Notes Sharing System 1.0. This affects an unknown part of the file /Dashboard of the component Cookie Handler. The manipulation of the argument sessionid leads to sql injection. It is possible to initiate the attack...

Code-Projects Chat System 注入漏洞

Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ID in the file /user/fetchmember.php. An attacker can exploit this vulnerability to execute illegal SQL commands to ste...

Microsoft Configuration Manager SQL注入漏洞

Microsoft Configuration Manager is a Microsoft solution for managing computers and servers within an organization that helps IT departments keep software up to date, set configuration and security policies, and monitor system status. A SQL injection vulnerability exists in Microsoft Configuration...

Code-Projects Library System 注入漏洞

Library System is a library system. The Library System suffers from an SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter Search in the file /user/teacher/books.php. An attacker can exploit this vulnerability to execute...

CampCodes Sales and Inventory System 注入漏洞

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in Campcodes Sales and Inventory System version 1.0, which stems from improper manipulation of the parameter Customer in the file /pages/customeraccount.php, which could lea...

Quiter Gateway SQL注入漏洞

Quiter Gateway is an API interface from Quiter Spain. A SQL injection vulnerability exists in Quiter Gateway versions prior to 4.7.0, which stems from an SQL injection in the pagina.filter.categoria parameter, which could lead to database manipulation...