17 matches found
CVE-2025-12926 SourceCodester Farm Management System review.php sql injection
A weakness has been identified in SourceCodester Farm Management System 1.0. The affected element is an unknown function of the file /review.php. This manipulation of the argument pid causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the...
SourceCodester Farm Management System SQL注入漏洞
SourceCodester Farm Management System is a SourceCodester open source farm management system. A SQL injection vulnerability exists in SourceCodester Farm Management System version 1.0, which stems from an incorrect manipulation of the parameter pid in the file /review.php, which could lead to a S...
PT-2025-45590
A weakness has been identified in SourceCodester Farm Management System 1.0. The affected element is an unknown function of the file /review.php. This manipulation of the argument pid causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the...
EUVD-2025-26293
Malicious code in bioql PyPI...
CVE-2025-9726
A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /review.php. The manipulation of the argument pid results in sql injection. The attack may be launched remotely. The exploit has been released to the...
CVE-2025-9726 Campcodes Farm Management System review.php sql injection
A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /review.php. The manipulation of the argument pid results in sql injection. The attack may be launched remotely. The exploit has been released to the...
CampCodes Farm Management System 安全漏洞
CampCodes Farm Management System is a farm management system from CampCodes Philippines. A security vulnerability exists in CampCodes Farm Management System version 1.0, which originates from a SQL injection due to incorrect manipulation of the parameter pid in the file /review.php...
CVE-2023-1041
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Responsive Tourism Website 1.0. This affects an unknown part of the file /tourism/ratereview.php. The manipulation of the argument id with the input 1" leads to cross site scripting. It is possible to initiat...
CVE-2021-39413
Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...
CVE-2023-1041
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Responsive Tourism Website 1.0. This affects an unknown part of the file /tourism/ratereview.php. The manipulation of the argument id with the input 1"alert1111 leads to cross site scripting. It is possible t...
digitaltrends.com XSS vulnerability
Vulnerable URL: https://www.digitaltrends.com/laptop-reviews/page/21/?"'/alert"openbugbounty"...
gbrmpa.gov.au XSS vulnerability
Vulnerable URL: http://www.gbrmpa.gov.au/geoportal/catalog/search/resource/review.page?uuid=...
activeherb.com XSS vulnerability
Vulnerable URL: http://www.activeherb.com/php/gethreview.php?=1445906886567=json=prompt/OPENBUGBOUNTY/...
stage-gate.net XSS vulnerability
Vulnerable URL: http://www.stage-gate.net/sgi/pc/review.php?prodname=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1723853 Google...
toysrus.de XSS vulnerability
Vulnerable URL: http://www.toysrus.de/reviews/index.jsp?productId=44692391campaignid=productpage...
Network fun Mall HTML static V2013 version there is a SQL injection vulnerability-vulnerability warning-the black bar safety net
Brief description: Network fun HTML static V2013 version of a page still exists injection may be squib administrator account password! Detailed description: Brother really can not wait Ah, the original to a passerby submitted by the vulnerability...
Network fun online shopping users fashion Edition Build 1 0 1 1 0 1 SQL injection exploit-vulnerability warning-the black bar safety net
listshj. asp page there is the injection, not for authentication, wherein %dim shjiaid shjiaid=request. querystring"id" set rs=server. createobject"adodb. recordset" rs. open "select from shjia where shjiaid=" shjiaid ,conn,1,1% ID is not filtered, and injected into the generated/admin/listshj...