14 matches found
EUVD-2025-13476
Malicious code in bioql PyPI...
SourceCodester Advanced School Management System 安全漏洞
SourceCodester Advanced School Management System is an advanced school management system from SourceCodester open source. A security vulnerability exists in SourceCodester Advanced School Management System version 1.0, which originates from a SQL injection due to a misbehavior of parameter q in...
CVE-2025-9306
A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/notice/addNotice. The manipulation of the argument noticeSubject results in cross site scripting. It is possible to launch the attack remotely...
CVE-2025-9306
SourceCodester Advanced School Management System 1.0 contains a Stored XSS in /index.php/notice/addNotice effected by the noticeSubject parameter. The root cause is improper sanitization/escaping of user input, allowing an attacker to inject script that executes in other users’ browsers. The vuln...
CVE-2025-4314
A vulnerability has been found in SourceCodester Advanced Web Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation of the argument txtLogin leads to sql injection. The attack can be launched remotely. The...
CVE-2025-4314 SourceCodester Advanced Web Store index.php sql injection
A vulnerability has been found in SourceCodester Advanced Web Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation of the argument txtLogin leads to sql injection. The attack can be launched remotely. The...
CVE-2025-4314 SourceCodester Advanced Web Store index.php sql injection
A vulnerability has been found in SourceCodester Advanced Web Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation of the argument txtLogin leads to sql injection. The attack can be launched remotely. The...
CVE-2025-4314
CVE-2025-4314 affects SourceCodester Advanced Web Store 1.0. The vulnerability is an SQL injection in the admin/index.php file via the txtLogin parameter, arising from improper input handling. It is exploitable remotely and has been publicly disclosed. Documented impacts indicate potential compro...
CVE-2025-4313 SourceCodester Advanced Web Store admin_addnew_product.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Advanced Web Store 1.0. Affected is an unknown function of the file /admin/adminaddnewproduct.php. The manipulation of the argument txtProdId leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2025-4312
A vulnerability, which was classified as critical, has been found in SourceCodester Advanced Web Store 1.0. This issue affects some unknown processing of the file /productdetail.php. The manipulation of the argument prodid leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2025-4312 SourceCodester Advanced Web Store productdetail.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Advanced Web Store 1.0. This issue affects some unknown processing of the file /productdetail.php. The manipulation of the argument prodid leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2025-4312 SourceCodester Advanced Web Store productdetail.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Advanced Web Store 1.0. This issue affects some unknown processing of the file /productdetail.php. The manipulation of the argument prodid leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2025-4312
SourceCodester Advanced Web Store 1.0 contains a SQL injection vulnerability in /productdetail.php via the prodid parameter. The issue allows remote initiation and has been disclosed publicly. Exploitation details are provided across multiple sources (e.g., CVE-2025-4312, Red Hat advisory, PT Sec...
SourceCodester Advanced Web Store 安全漏洞
SourceCodester Advanced Web Store is a SourceCodester open source advanced web store. A security vulnerability exists in SourceCodester Advanced Web Store version 1.0, which stems from improper manipulation of the parameter txtProdId in the file /admin/adminaddnewproduct.php, which could lead to ...