SourceCodester Online Resort Management System 安全漏洞

The SourceCodester Online Resort Management System is an open-source network-based application developed by SourceCodester. It provides online room booking capabilities and can also be used as a simple website for resorts. Version 1.0 of the SourceCodester Online Resort Management System has a...

SourceCodester Online Thesis Archiving System 安全漏洞

The SourceCodester Online Thesis Archiving System is an open-source online thesis archiving system developed by SourceCodester. Version 1.0 of the Sourcecodester Online Thesis Archiving System contains a security vulnerability, which stems from a SQL injection vulnerability in the...

PT-2026-32393

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=delete sales. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and...

CVE-2026-36938

Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL injection in /orms/admin/rooms/viewroom.php...

CVE-2026-36943

Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/repairs/manage_repair.php (CVE-2026-36943). The CVSS v3.1 base score is 2.7 (LOW). Exploitation details and remediation/fix are not provided in the connected documents; no ...

CVE-2026-36944

Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerale to SQL injection in the file/rsms/admin/repairs/viewdetails.php...

SourceCodester Online Reviewer System 安全漏洞

The SourceCodester Online Reviewer System is an open-source online review system developed by SourceCodester. Version 1.0 of the SourceCodester Online Reviewer System contains a security vulnerability, which stems from an SQL injection vulnerability in the...

SourceCodester Online Reviewer System 安全漏洞

The SourceCodester Online Reviewer System is an open-source online review system developed by SourceCodester. Version 1.0 of the SourceCodester Online Reviewer System contains a security vulnerability, which stems from an SQL injection vulnerability in the...

CVE-2026-36937

Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL injection in /orms/admin/reservations/viewdetails.php...

PT-2026-32355

Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/inquiries/view details.php...

CVE-2026-36942

Sourcecodester Online Resort Management System v1.0 is vulnerable to SQL injection in the file /orms/admin/activities/manageactivity.php...

CVE-2026-36950

Sourcecodester Online Thesis Archiving System v1.0 is affected by a SQL injection vulnerability in /otas/projects_per_department.php. The CVE-2026-36950 entry identifies the affected component and the underlying issue is an injectable SQL condition, leading to potential disclosure or manipulation...

CVE-2026-36945

CVE-2026-36945 affects Sourcecodester Computer and Mobile Repair Shop Management System v1.0. A SQL injection flaw exists in /rsms/admin/clients/manage_client.php, with low overall impact (C/L, I/N, A/N) and requires high privileges; exploitation details not provided in the supplied documents. No...

CVE-2026-36873

CVE-2026-36873 affects Sourcecodester Basic Library System v1.0. The vulnerability is a SQL Injection in the administrative loader endpoint at /librarysystem/load_admin.php (variants in copies show /librarysystem/load_admin.php). Evidence from Red Hat, ENISA EUVD, CIRCL, CVE lists confirms the sa...

CVE-2026-36919

CVE-2026-36919 affects Sourcecodester Online Reviewer System v1.0. The vulnerability is a SQL Injection in the file /system/system/admins/assessments/examproper/exam-update.php. The available records confirm the impact is SQL injection but do not provide patch details or specific vulnerable param...

CVE-2026-36937

Product/affected software: Sourcecodester Online Resort Management System v1.0. Vulnerability: SQL injection in the admin reservations details page path /orms/admin/reservations/view_details.php. Root cause (as stated): Unsafely constructed SQL in the PHP file. Impact/risks: Documented as a SQL i...

CVE-2026-36920

CVE-2026-36920 affects Sourcecodester Online Reviewer System v1.0. The Red Hat, ENISA EUVD, CIRCL, NVD, CVE lists, and Vulners enrichment all indicate a SQL Injection vulnerability in /system/system/admins/assessments/examproper/questions-view.php. Root cause details are not explicitly provided b...

CVE-2026-36874

Sourcecodester Basic Library System v1.0 is affected by a SQL Injection in /librarysystem/load_student.php. The CVSSv3.1 base score is 2.7 (LOW) with confidentiality impact LOW and no demonstrated exploit details in the provided documents. No remediation or patch information is included in the co...

CVE-2026-36946

CVE-2026-36946 affects Sourcecodester Computer and Mobile Repair Shop Management System v1.0. The vulnerability is an SQL injection in the file /rsms/admin/inquiries/view_details.php. The CVSS v3.1 data in the sources indicates: Network attack vector, low confidentiality impact, no integrity/avai...

EUVD-2026-21392

SourceCodester Engineers Online Portal v1.0 is vulnerable to SQL Injection in updatepassword.php via the newpassword parameter...