The vulnerability of the WeGIA web manager, related to the failure to protect the SQL query structure, allows attackers to execute arbitrary SQL code.

The vulnerability of the WeGIA web manager is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL code remotely...

Code-Projects Online Medicine Guide 注入漏洞

Code-Projects Online Medicine Guide is an online medicine guide from Code-Projects open source. An injection vulnerability exists in Code-Projects Online Medicine Guide version 1.0, which stems from SQL injection due to incorrect manipulation of the parameter Search in the file...

Code-Projects Wazifa System 注入漏洞

Wazifa System is a content management system. Wazifa System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Password in the file /controllers/updatesettings.php. An attacker can use this vulnerability to...

Vehicle Management edit1.php File SQL Injection Vulnerability

Vehicle Management is a vehicle management system. Vehicle Management suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter sno in the file /edit1.php. An attacker can exploit this vulnerability to execute illegal S...

WordPress Smart Slider plugin SQL Injection Vulnerability

WordPress Smart Slider plugin is a powerful WordPress plugin that is mainly used to create responsive slideshows/sliders that support images, videos, posts and other forms of content presentation. WordPress Smart Slider plugin suffers from a SQL injection vulnerability that stems from the...

Code-Projects Online Medicine Guide 注入漏洞

Online Medicine Guide is an online medical guide. Online Medicine Guide suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter uname in the file /login.php. The vulnerability can be exploited by an attacker to execute...

Code-Projects Vehicle Management 注入漏洞

Vehicle Management is a vehicle management system. Vehicle Management suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter from in the file /filter.php. An attacker can exploit this vulnerability to execute illegal...

Projectworlds Online Admission System 安全漏洞

Online Admission System is an online admission system. The Online Admission System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter ID of the file /adminac.php. An attacker can exploit this vulnerability to...

Code-Projects Vehicle Management 注入漏洞

Vehicle Management is a vehicle management system. Vehicle Management suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter company in the file /addcompany.php. An attacker can exploit this vulnerability to execute...

CloudClassroom-PHP-Project 安全漏洞

CloudClassroom-PHP-Project is a cloud classroom website by the individual developer Vishal Mathur. A security vulnerability exists in CloudClassroom-PHP-Project version 1.0, which stems from SQL injection and could lead to database manipulation...

CVE-2025-8334

A vulnerability was found in Campcodes Online Recruitment Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/ajax.php?action=deleterecruitmentstatus. The manipulation of the argument ID leads to sql injection. The attack m...

code-projects Exam Form Submission 注入漏洞

Exam Form Submission is an exam form. Exam Form Submission suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in parameter ID in file /admin/deletes8.php. An attacker can exploit this vulnerability to execute illegal SQL commands...

Piwigo 安全漏洞

Piwigo is Piwigo open source a set of Web-based open source image library software. The software includes features such as image management, image categorization and permission management. A security vulnerability exists in Piwigo 13.8.0 and earlier versions, which stems from the unvalidated...

PuneethReddyHc Online Shopping System Advanced 安全漏洞

PuneethReddyHc Online Shopping System Advanced is an open source online shopping system from the individual developers at Puneeth Reddy HC in India. A security vulnerability exists in PuneethReddyHc Online Shopping System Advanced version 1.0, which stems from improper cleaning of the keyword...

CVE-2025-8273

A vulnerability classified as critical has been found in code-projects Exam Form Submission 1.0. Affected is an unknown function of the file /admin/updates8.php. The manipulation of the argument credits leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-8250

A vulnerability, which was classified as critical, was found in code-projects Exam Form Submission 1.0. Affected is an unknown function of the file /admin/updates4.php. The manipulation of the argument credits leads to sql injection. It is possible to launch the attack remotely. The exploit has...

Code-Projects Exam Form Submission 注入漏洞

Code-Projects Exam Form Submission is an open source exam form from Code-Projects. An injection vulnerability exists in code-projects Exam Form Submission version 1.0, which originates from SQL injection due to manipulation of the parameter ID in the file /admin/deletes3.php...

Code-Projects Exam Form Submission 注入漏洞

Code-Projects Exam Form Submission is an open source exam form from Code-Projects. An injection vulnerability exists in Code-Projects Exam Form Submission version 1.0, which originates from SQL injection due to manipulation of the parameter ID in the file /admin/deletes2.php...

The vulnerability of the Mattermost instant messaging application, related to the failure to protect the SQL query structure, allows unauthorized access to the database.

The vulnerability of the Mattermost instant messaging application is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to the database...

CVE-2025-8236

A vulnerability was found in code-projects Online Ordering System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/editproduct.php. The manipulation of the argument Name leads to sql injection. The attack can be initiated remotely. The exploit has...