EUVD-2025-24012

Malicious code in bioql PyPI...

EUVD-2025-24685

Malicious code in bioql PyPI...

EUVD-2025-24797

Malicious code in bioql PyPI...

EUVD-2025-24882

Malicious code in bioql PyPI...

EUVD-2025-25763

Malicious code in bioql PyPI...

EUVD-2025-28124

Malicious code in bioql PyPI...

EUVD-2025-28873

Malicious code in bioql PyPI...

EUVD-2025-28406

Malicious code in bioql PyPI...

CVE-2025-52041

In Frappe ERPNext 15.57.5, the function getstockbalancefor at erpnext/stock/doctype/stockreconciliation/stockreconciliation.py is vulnerable to SQL Injection, which allows an attacker to extract all information from databases by injecting a SQL query into the inventorydimensionsdict parameter...

CVE-2025-57254

An SQL injection vulnerability in user-login.php and index.php of Karthikg1908 Hospital Management System HMS 1.0 allows remote attackers to execute arbitrary SQL queries via the username and password POST parameters. The application fails to properly sanitize input before embedding it into SQL...

CVE-2025-11089 kidaze CourseSelectionSystem COUNT3s4.php sql injection

A vulnerability was determined in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. This impacts an unknown function of the file /Profilers/PriProfile/COUNT3s4.php. Executing manipulation of the argument cbranch can lead to sql injection. It is possible to launch the...

Code-Projects Simple Scheduling System SQL注入漏洞

Simple Scheduling System is a simple scheduling system. Simple Scheduling System suffers from a SQL injection vulnerability that stems from the failure of the /schedulingsystem/addroom.php file to effectively filter the room parameter. No details of the vulnerability are available at this time...

CVE-2025-11076

A vulnerability was found in Campcodes Online Learning Management System 1.0. This impacts an unknown function of the file /admin/editteacher.php. Performing manipulation of the argument department results in sql injection. Remote exploitation of the attack is possible. The exploit has been made...

CVE-2025-11061

A vulnerability was found in Campcodes Online Learning Management System 1.0. This affects an unknown part of the file /admin/editstudent.php. Performing manipulation of the argument cys results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public...

CampCodes Online Learning Management System SQL注入漏洞

CampCodes Online Learning Management System is an online learning management system from CampCodes Philippines, Inc. A SQL injection vulnerability exists in CampCodes Online Learning Management System version 1.0, which stems from an incorrect manipulation of the parameter ID in the file...

PT-2025-39565

Name of the Vulnerable Software and Affected Versions Potenzaglobalsolutions PGS Core versions through 5.9.0 Description A flaw exists in Potenzaglobalsolutions PGS Core that allows SQL Injection due to improper neutralization of special elements used in an SQL command. This could allow an attack...

CVE-2025-10857 Campcodes Point of Sale System POS login.php sql injection

A security flaw has been discovered in Campcodes Point of Sale System POS 1.0. Affected by this issue is some unknown functionality of the file /login.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has...

PT-2025-39112

Name of the Vulnerable Software and Affected Versions SourceCodester Pet Grooming Management Software version 1.0 Description A flaw exists in SourceCodester Pet Grooming Management Software that allows for remote SQL injection. This occurs through manipulation of the ID argument within an unknow...

CVE-2025-29083

CSZ-CMS 1.3.0 is affected by an SQL Injection in Plugin_Manager.php (execSqlFile) that can lead to remote code execution. The vulnerability has been described across multiple sources as allowing an attacker to execute arbitrary code, with CVSS Brook 3.1 metrics indicating network access, low atta...

CampCodes Online Beauty Parlor Management System SQL注入漏洞

CampCodes Online Beauty Parlor Management System is an online beauty parlor management system from CampCodes Philippines, Inc. A SQL injection vulnerability exists in CampCodes Online Beauty Parlor Management System version 1.0, which stems from incorrect manipulation of the parameters fromdate a...