73 matches found
CVE-2026-36232
A SQL injection vulnerability was found in the instructorClasses.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'classId' parameter from $GET'classId' is directly concatenated into the SQL query without any sanitization or validation...
CVE-2026-36233
CVE-2026-36233 concerns a SQL injection in the itsourcecode Online Student Enrollment System v1.0 , specifically in the file assignInstructorSubjects.php . The issue arises because the vulnerable parameter subjcode is used directly in SQL queries without proper cleaning/validation, enabling attac...
CVE-2026-36233
A SQL injection vulnerability was found in the assignInstructorSubjects.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that attackers can inject malicious code via the parameter "subjcode" and use it directly in SQL queries without the need for...
CVE-2025-14582
A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...
CVE-2025-14583
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...
CVE-2025-14582
A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...
CVE-2025-14583 campcodes Online Student Enrollment System register.php unrestricted upload
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...
EUVD-2025-20686
Malicious code in bioql PyPI...
EUVD-2022-49306
Malicious code in bioql PyPI...
EUVD-2022-49307
Malicious code in bioql PyPI...
EUVD-2024-46620
Malicious code in bioql PyPI...
EUVD-2024-46614
Malicious code in bioql PyPI...
EUVD-2024-46617
Malicious code in bioql PyPI...
EUVD-2024-46619
Malicious code in bioql PyPI...
EUVD-2024-46613
Malicious code in bioql PyPI...
EUVD-2024-46618
Malicious code in bioql PyPI...
EUVD-2024-46616
Malicious code in bioql PyPI...
CVE-2025-7191
A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-7191
A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-7191
CVE-2025-7191 affects code-projects Student Enrollment System 1.0. The vulnerability is a SQL injection in the /login.php file caused by manipulating the Username parameter. Attack is network-based and can be exploited remotely; exploitation has been disclosed publicly. Several connected sources ...