CVE-2026-3745 code-projects Student Web Portal profile.php sql injection

A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

CVE-2026-3745 code-projects Student Web Portal profile.php sql injection

A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

EUVD-2026-10247

A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

CVE-2026-3744

A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

CVE-2026-3744

CVE-2026-3744 affects code-projects Student Web Portal 1.0. The vulnerability is in the function valreg_passwdation of signup.php, where the reg_passwd argument can be manipulated to trigger a SQL injection. It is a remote, publicly disclosed exploit (PoC present in multiple sources). The issue i...

CVE-2026-3744 code-projects Student Web Portal signup.php valreg_passwdation sql injection

A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

PT-2026-23951

A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

Code-Projects Student Web Portal SQL注入漏洞

Code-Projects Student Web Portal is an open-source student portal developed by Code-Projects. Version 1.0 of the Code-Projects Student Web Portal contains a SQL injection vulnerability, which stems from the handling of the User parameter in the profile.php file, potentially leading to SQL injecti...

CVE-2026-2158 code-projects Student Web Portal check_user.php sql injection

A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /checkuser.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely...

CVE-2025-57515

A SQL injection vulnerability has been identified in Uniclare Student Portal v2. This flaw allows remote attackers to inject arbitrary SQL commands via vulnerable input fields, enabling the execution of time-delay functions to infer database responses...

CVE-2025-57515

A SQL injection vulnerability has been identified in Uniclare Student Portal v2. This flaw allows remote attackers to inject arbitrary SQL commands via vulnerable input fields, enabling the execution of time-delay functions to infer database responses...

PT-2025-40938

Name of the Vulnerable Software and Affected Versions Uniclare Student Portal version 2 Description A SQL injection flaw exists in Uniclare Student Portal version 2. This allows remote attackers to inject arbitrary SQL commands through vulnerable input fields. Exploitation can involve executing...

CVE-2025-57515

The CVE-2025-57515 entry concerns Uniclare Student Portal v2, where a SQL injection flaw exists in input fields. The vulnerability enables attackers to inject arbitrary SQL commands and, per sources, can leverage time-delay functions to infer database responses. Documented affected component is t...

CVE-2025-57515

A SQL injection vulnerability has been identified in Uniclare Student Portal v2. This flaw allows remote attackers to inject arbitrary SQL commands via vulnerable input fields, enabling the execution of time-delay functions to infer database responses...

CVE-2025-57515

A SQL injection vulnerability has been identified in Uniclare Student Portal v2. This flaw allows remote attackers to inject arbitrary SQL commands via vulnerable input fields, enabling the execution of time-delay functions to infer database responses...

EUVD-2025-4512

Malicious code in bioql PyPI...

CVE-2024-57401

SQL Injection vulnerability in Uniclare Student portal v.2 and before allows a remote attacker to execute arbitrary code via the Forgot Password function...

CVE-2024-57401

SQL Injection vulnerability in Uniclare Student portal v.2 and before allows a remote attacker to execute arbitrary code via the Forgot Password function...

CVE-2024-57401

CVE-2024-57401 affects Uniclare Student Portal (v2 and earlier). Root cause is a failure to properly filter input, allowing SQL injection via the Forgot Password function, which can lead to remote code execution. CVSS 3.1 base score 9.8 (CRITICAL) with network attack vector, no privileges require...

Uniclare Student portal 安全漏洞

Uniclare Student portal is a student portal system from Uniclare. A security vulnerability exists in Uniclare Student portal version v2 and prior versions, which stems from a failure to filter input. An attacker can exploit this vulnerability to execute arbitrary SQL commands via an injection...