16073 matches found
PT-2025-47056
Name of the Vulnerable Software and Affected Versions SourceCodester Farm Management System version 1.0 Description A flaw exists in an unknown functionality within the software that results in information disclosure through directory listing. This issue is potentially exploitable remotely, and...
EUVD-2025-197645
Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...
CVE-2025-63891
Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...
PT-2025-47005
Name of the Vulnerable Software and Affected Versions SourceCodester Simple Online Book Store System affected versions not specified Description An information disclosure issue exists in the web-accessible backup file of the SourceCodester Simple Online Book Store System. A remote, unauthenticate...
SourceCodester Simple Online Book Store System 安全漏洞
SourceCodester Simple Online Book Store System is a SourceCodester open source simple online bookstore system. A security vulnerability exists in SourceCodester Simple Online Book Store System, which originates from an unauthenticated HTTP GET request to access a database backup file, potentially...
CVE-2025-13060
A security vulnerability has been detected in SourceCodester Survey Application System 1.0. This affects an unknown function of the file /viewsurvey.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and m...
CVE-2025-13122
A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. The affected element is the function getPatientAppointment of the file /php/apipatientcheckin.php. Performing manipulation of the argument appointmentID results in sql injection. It is possible to...
CVE-2025-13122 SourceCodester Patients Waiting Area Queue Management System api_patient_checkin.php getPatientAppointment sql injection
A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. The affected element is the function getPatientAppointment of the file /php/apipatientcheckin.php. Performing manipulation of the argument appointmentID results in sql injection. It is possible to...
CVE-2025-13122 SourceCodester Patients Waiting Area Queue Management System api_patient_checkin.php getPatientAppointment sql injection
A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. The affected element is the function getPatientAppointment of the file /php/apipatientcheckin.php. Performing manipulation of the argument appointmentID results in sql injection. It is possible to...
SourceCodester Simple E-Banking System 安全漏洞
SourceCodester Simple E-Banking System is a SourceCodester open source simple e-banking system. A security vulnerability exists in SourceCodester Simple E-Banking System version 1.0, which stems from vulnerability to cross-site request forgery attacks...
SourceCodester Patients Waiting Area Queue SQL注入漏洞
SourceCodester Patients Waiting Area Queue is an open source patient waiting area queuing system from SourceCodester. SourceCodester Patients Waiting Area Queue version 1.0 has a SQL injection vulnerability, the vulnerability stems from the improper handling of the appointmentID parameter in the...
CVE-2025-13059
A weakness has been identified in SourceCodester Alumni Management System 1.0. The impacted element is an unknown function of the file /managecareer.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available t...
CVE-2025-13060
A security vulnerability has been detected in SourceCodester Survey Application System 1.0. This affects an unknown function of the file /viewsurvey.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and m...
CVE-2025-13060
A security vulnerability has been detected in SourceCodester Survey Application System 1.0. This affects an unknown function of the file /viewsurvey.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and m...
CVE-2025-13059
A weakness has been identified in SourceCodester Alumni Management System 1.0. The impacted element is an unknown function of the file /managecareer.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available t...
CVE-2025-13060 SourceCodester Survey Application System view_survey.php sql injection
A security vulnerability has been detected in SourceCodester Survey Application System 1.0. This affects an unknown function of the file /viewsurvey.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and m...
CVE-2025-13060 SourceCodester Survey Application System view_survey.php sql injection
A security vulnerability has been detected in SourceCodester Survey Application System 1.0. This affects an unknown function of the file /viewsurvey.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and m...
CVE-2025-13060
CVE-2025-13060 affects SourceCodester Survey Application System 1.0. The issue is a SQL injection in the function handling the parameter ID in the file /view_survey.php. It can be exploited remotely, and multiple sources note that the exploit has been publicly disclosed. The vulnerability’s sever...
CVE-2025-13059
CVE-2025-13059 affects SourceCodester Alumni Management System 1.0. The vulnerability is a SQL injection in an unknown function of the file /manage_career.php caused by manipulation of the ID parameter. Remote exploitation is possible, and public exploits have been released. Impacts are described...
PT-2025-46706
Name of the Vulnerable Software and Affected Versions SourceCodester Alumni Management System version 1.0 Description A flaw exists in SourceCodester Alumni Management System 1.0. The issue is related to the manipulation of the ID argument within an unknown function of the /manage career.php file...