Lucene search
K

34 matches found

Vulnrichment
Vulnrichment
added 2026/03/23 8:48 a.m.1 views

CVE-2026-4580 code-projects Simple Laundry System Parameters checkupdatestatus.php sql injection

A security flaw has been discovered in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /checkupdatestatus.php of the component Parameters Handler. The manipulation of the argument serviceId results in sql injection. The attack can be executed remotely. The...

7.5CVSS5.7AI score0.00329EPSS
Exploits1References5
NVD
NVD
added 2026/03/23 8:16 a.m.5 views

CVE-2026-4579

A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /viewdetail.php of the component Parameters Handler. The manipulation of the argument serviceId leads to sql injection. Remote exploitation of the attack is possible. The exploi...

9.8CVSS0.00428EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/03/23 7:36 a.m.31 views

CVE-2026-4579 code-projects Simple Laundry System Parameters viewdetail.php sql injection

A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /viewdetail.php of the component Parameters Handler. The manipulation of the argument serviceId leads to sql injection. Remote exploitation of the attack is possible. The exploi...

7.5CVSS0.00428EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/23 7:36 a.m.2 views

CVE-2026-4579

A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /viewdetail.php of the component Parameters Handler. The manipulation of the argument serviceId leads to sql injection. Remote exploitation of the attack is possible. The exploi...

7.5CVSS5.6AI score0.00428EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/23 7:36 a.m.4 views

CVE-2026-4579 code-projects Simple Laundry System Parameters viewdetail.php sql injection

A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /viewdetail.php of the component Parameters Handler. The manipulation of the argument serviceId leads to sql injection. Remote exploitation of the attack is possible. The exploi...

7.5CVSS6.8AI score0.00428EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.6 views

PT-2026-27065

A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /viewdetail.php of the component Parameters Handler. The manipulation of the argument serviceId leads to sql injection. Remote exploitation of the attack is possible. The exploi...

7.5CVSS5.6AI score0.00428EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.8 views

Code-Projects Simple Laundry System SQL注入漏洞

Code-Projects Simple Laundry System is an open-source system developed by Code-Projects, designed for managing laundry shop operations. It offers features such as order management, customer management, and inventory management. Version 1.0 of the code-projects Simple Laundry System contains a SQL...

9.8CVSS7.2AI score0.00428EPSS
Exploits1References5
OSV
OSV
added 2025/10/11 10:15 p.m.6 views

CVE-2025-11615

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/addinvoice.php. Performing manipulation of the argument ServiceId results in sql injection. Remote exploitation of the attack is possible. The exploit has been...

9.8CVSS5.7AI score0.00425EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/11 9:32 p.m.6 views

CVE-2025-11615 SourceCodester Best Salon Management System add_invoice.php sql injection

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/addinvoice.php. Performing manipulation of the argument ServiceId results in sql injection. Remote exploitation of the attack is possible. The exploit has been...

7.5CVSS6.5AI score0.00425EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.6 views

PT-2025-41701

Name of the Vulnerable Software and Affected Versions SourceCodester Best Salon Management System version 1.0 Description A security flaw exists in SourceCodester Best Salon Management System 1.0. The issue is a SQL injection affecting an unknown part of the file /panel/add invoice.php...

7.5CVSS7.7AI score0.00425EPSS
Exploits1References11
Prion
Prion
added 2007/08/29 1:17 a.m.19 views

Buffer overflow

Multiple buffer overflows in phpiisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as demonstrated by a long string in the first argument to the iisgetservicestate function, related to the...

7.5CVSS7.8AI score0.09446EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/08/29 1:17 a.m.28 views

CVE-2007-4586

Multiple buffer overflows in phpiisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as demonstrated by a long string in the first argument to the iisgetservicestate function, related to the...

7.5CVSS7.5AI score0.09446EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2005/11/04 12:0 a.m.3 views

PT-2005-4293 · Php · Php Handicapper

Name of the Vulnerable Software and Affected Versions: PHP Handicapper affected versions not specified Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the serviceid parameter in the process signup.php file. The vendor initially disputed this issue,...

7.5CVSS8.7AI score0.01395EPSS
Exploits0References7
Cvelist
Cvelist
added 2005/11/04 12:0 a.m.21 views

CVE-2005-3497

SQL injection vulnerability in processsignup.php in PHP Handicapper allows remote attackers to execute arbitrary SQL commands via the serviceid parameter. NOTE: on 20060210, the vendor disputed this issue, saying "this is 100% false reporting, this is a slander campaign from a customer who had a...

8.2AI score0.01395EPSS
Exploits0References5
Rows per page
Query Builder