SourceCodester Train Station Ticketing System SQL注入漏洞

SourceCodester Train Station Ticketing System is SourceCodester open source a train station ticketing system. A SQL injection vulnerability exists in SourceCodester Train Station Ticketing System version 1.0, which stems from an incorrect manipulation of the parameter Username in the file...

CVE-2025-63892

CVE-2025-63892 affects SourceCodester Student Grades Management System 1.0, specifically the /classroom.php file’s create_classroom function in the My Classrooms Management Page. The vulnerability arises from manipulation of the name/description arguments, enabling stored cross-site scripting. Ex...

EUVD-2025-197808

Cross-Site Scripting XSS vulnerability exists in SourceCodester AI Font Matcher nid=18425, 2025-10-10 that allows remote attackers to execute arbitrary JavaScript in victims' browsers. The vulnerability occurs in the webfonts API handling mechanism where font family names are not properly...

CVE-2025-63708

Cross-Site Scripting XSS vulnerability exists in SourceCodester AI Font Matcher nid=18425, 2025-10-10 that allows remote attackers to execute arbitrary JavaScript in victims' browsers. The vulnerability occurs in the webfonts API handling mechanism where font family names are not properly...

CVE-2025-63708

Cross-Site Scripting XSS vulnerability exists in SourceCodester AI Font Matcher nid=18425, 2025-10-10 that allows remote attackers to execute arbitrary JavaScript in victims' browsers. The vulnerability occurs in the webfonts API handling mechanism where font family names are not properly...

CVE-2025-13248

A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. The impacted element is an unknown function of the file /php/apipatientschedule.php. This manipulation of the argument appointmentID causes sql injection. The attack can be initiated remotely. The...

EUVD-2025-197768

A vulnerability was detected in SourceCodester Dental Clinic Appointment Reservation System 1.0. Impacted is an unknown function of the file /success.php. Performing manipulation of the argument username/password results in sql injection. The attack can be initiated remotely. The exploit is now...

CVE-2025-13267 SourceCodester Dental Clinic Appointment Reservation System success.php sql injection

A vulnerability was detected in SourceCodester Dental Clinic Appointment Reservation System 1.0. Impacted is an unknown function of the file /success.php. Performing manipulation of the argument username/password results in sql injection. The attack can be initiated remotely. The exploit is now...

CVE-2025-13267 SourceCodester Dental Clinic Appointment Reservation System success.php sql injection

A vulnerability was detected in SourceCodester Dental Clinic Appointment Reservation System 1.0. Impacted is an unknown function of the file /success.php. Performing manipulation of the argument username/password results in sql injection. The attack can be initiated remotely. The exploit is now...

CVE-2025-13267

SourceCodester Dental Clinic Appointment Reservation System 1.0 contains a SQL injection in /success.php, exploitable by manipulating the username/password parameters. The issue is remote and publicly exploited according to multiple sources; impacts include high confidentiality, integrity, and av...

CVE-2025-13264

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /viewmagazine.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been released to the publ...

CVE-2025-13264

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /viewmagazine.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been released to the publ...

CVE-2025-13263

A vulnerability was identified in SourceCodester Online Magazine Management System 1.0. Affected by this issue is some unknown functionality of the file /categories.php. The manipulation of the argument c leads to sql injection. The attack is possible to be carried out remotely. The exploit is...

CVE-2025-13263

A vulnerability was identified in SourceCodester Online Magazine Management System 1.0. Affected by this issue is some unknown functionality of the file /categories.php. The manipulation of the argument c leads to sql injection. The attack is possible to be carried out remotely. The exploit is...

CVE-2025-13264

CVE-2025-13264 affects SourceCodester Online Magazine Management System 1.0, specifically the /view_magazine.php file. The vulnerability arises from manipulating the ID parameter, causing SQL injection. Remote exploitation is possible, and public PoCs exist. Multiple sources confirm the issue and...

EUVD-2025-197754

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /viewmagazine.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been released to the publ...

CVE-2025-13264 SourceCodester Online Magazine Management System view_magazine.php sql injection

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /viewmagazine.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been released to the publ...

CVE-2025-13264 SourceCodester Online Magazine Management System view_magazine.php sql injection

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /viewmagazine.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been released to the publ...

CVE-2025-13263 SourceCodester Online Magazine Management System categories.php sql injection

A vulnerability was identified in SourceCodester Online Magazine Management System 1.0. Affected by this issue is some unknown functionality of the file /categories.php. The manipulation of the argument c leads to sql injection. The attack is possible to be carried out remotely. The exploit is...

EUVD-2025-197755

A vulnerability was identified in SourceCodester Online Magazine Management System 1.0. Affected by this issue is some unknown functionality of the file /categories.php. The manipulation of the argument c leads to sql injection. The attack is possible to be carried out remotely. The exploit is...