Code-Projects Library System 注入漏洞

Library System is a library system. The Library System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Username in the file /add-teacher.php. An attacker can exploit this vulnerability to execute illega...

Ivanti Endpoint Manager SQL注入漏洞

Ivanti Endpoint Manager is a comprehensive endpoint management solution developed by Ivanti to manage all endpoint devices in an enterprise network. Ivanti Endpoint Manager suffers from a SQL injection vulnerability that originates from improperly filtered submitted SQL statements, which can be...

PHPGurukul Zoo Management System 注入漏洞

Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /admin/manage-animals.php. An attacker can exploit this vulnerability...

Siemens SINEC NMS SQL注入漏洞

Siemens SINEC NMS is a network management system NMS from Siemens, Germany, that can be used 24/7 to centrally monitor, manage and configure industrial networks with tens of thousands of devices, including safety-related areas. A SQL injection vulnerability exists in Siemens SINEC NMS, which can ...

ABIS Adjutant Core Accounting ERP 安全漏洞

ABIS Adjutant Core Accounting ERP is an enterprise resource planning software system from ABIS Corporation. A security vulnerability exists in ABIS Adjutant Core Accounting ERP build v.PreBeta250F, which stems from the cid parameter in a GET request that is vulnerable to SQL injection attacks,...

Code-Projects Jonnys Liquor 注入漏洞

jonnys Liquor is a content and management system. jonnys Liquor suffers from an SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Search in the file /browse.php. An attacker can exploit this vulnerability to execute illeg...

CampCodes Complaint Management System 注入漏洞

CampCodes Complaint Management System is a complaint management system from CampCodes Philippines. An injection vulnerability exists in CampCodes Complaint Management System version 1.0, which stems from improper handling of the parameter Username in the file /admin/index.php, which could lead to...

itsourcecode Employee Management System 安全漏洞

itsourcecode Employee Management System is a itsourcecode open source employee management system. A security vulnerability exists in itsourcecode Employee Management System 1.0 and earlier versions, which stems from improper handling of the parameter coursepg in the file...

CampCodes Advanced Online Voting System 注入漏洞

CampCodes Advanced Online Voting System is an advanced online voting system from CampCodes, Inc. An injection vulnerability exists in CampCodes Advanced Online Voting System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /admin/votersdelete.php, resulting in...

Car Rental System login.php File SQL Injection Vulnerability

Car Rental System is a car rental system. Car Rental System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter uname in the file /login.php. An attacker can exploit this vulnerability to execute illegal SQL...

Simple Pizza Ordering System large.php file SQL Injection Vulnerability

Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements in the parameter ID of file /large.php. An attacker can exploit this vulnerability to...

Staff Audit System /search_index.php File SQL Injection Vulnerability

Staff Audit System is an employee audit system. Staff Audit System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Search in the file /searchindex.php. An attacker can exploit this vulnerability to execut...

Inventory Management System removeUser.php File SQL Injection Vulnerability

Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the userid parameter in the file /phpaction/removeUser.php for externally entered SQL statements. An attacker can...

WordPress plugin iFrame Images Gallery SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

The vulnerability of the Documino automation platform for electronic document processing lies in the lack of measures taken to protect the SQL query structure, allowing attackers to enhance their privileges.

The vulnerability of the Documino automation platform for electronic document processing lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow attackers to enhance their privileges by sending specially crafted SQL queries...

CVE-2025-6937

A vulnerability was found in code-projects Simple Pizza Ordering System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /large.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been...

CampCodes Employee Management System 注入漏洞

CampCodes Employee Management System is an employee management system from CampCodes Philippines. An injection vulnerability exists in CampCodes Employee Management System version 1.0, which is caused by an incorrect manipulation of the mailuid parameter in the file /process/aprocess.php, resulti...

CVE-2025-6908

A vulnerability, which was classified as critical, was found in PHPGurukul Old Age Home Management System 1.0. Affected is an unknown function of the file /admin/edit-services.php. The manipulation of the argument sertitle leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2025-6907

A vulnerability classified as critical was found in code-projects Car Rental System 1.0. This vulnerability affects unknown code of the file /bookcar.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2025-6901

A vulnerability was found in code-projects Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /phpaction/removeUser.php. The manipulation of the argument userid leads to sql injection. The attack may be initiated remotely. The exploi...