73 matches found
CVE-2026-36232
A SQL injection vulnerability was found in the instructorClasses.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'classId' parameter from $GET'classId' is directly concatenated into the SQL query without any sanitization or validation...
CVE-2026-36233
A SQL injection vulnerability was found in the assignInstructorSubjects.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that attackers can inject malicious code via the parameter "subjcode" and use it directly in SQL queries without the need for...
CVE-2026-36233
The vulnerability CVE-2026-36233 affects the itsourcecode Online Student Enrollment System v1.0. A SQL injection exists in assignInstructorSubjects.php where the parameter subjcode can be injected and used directly in SQL queries without proper cleaning/validation. This could allow an attacker to...
CVE-2025-14582
A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...
CVE-2025-14583
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...
CVE-2025-14582
A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...
CVE-2025-14583 campcodes Online Student Enrollment System register.php unrestricted upload
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...
EUVD-2024-46614
Malicious code in bioql PyPI...
EUVD-2024-46613
Malicious code in bioql PyPI...
EUVD-2024-46616
Malicious code in bioql PyPI...
EUVD-2024-46619
Malicious code in bioql PyPI...
EUVD-2024-46618
Malicious code in bioql PyPI...
EUVD-2024-46617
Malicious code in bioql PyPI...
EUVD-2025-20686
Malicious code in bioql PyPI...
EUVD-2022-49307
Malicious code in bioql PyPI...
EUVD-2022-49306
Malicious code in bioql PyPI...
EUVD-2024-46620
Malicious code in bioql PyPI...
CVE-2025-7191
A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-7191
A vulnerability has been found in code-projects Student Enrollment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-7191
CVE-2025-7191 affects code-projects Student Enrollment System 1.0. The vulnerability is a SQL injection in the /login.php file caused by manipulating the Username parameter. Attack is network-based and can be exploited remotely; exploitation has been disclosed publicly. Several connected sources ...