61 matches found
CVE-2025-10421 SourceCodester Student Grading System update_account.php sql injection
A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...
CVE-2025-10421 SourceCodester Student Grading System update_account.php sql injection
A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...
SourceCodester Student Grading System SQL注入漏洞
SourceCodester Student Grading System is an open source student grading system from SourceCodester. A SQL injection vulnerability exists in SourceCodester Student Grading System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /updateaccount.php, which could le...
Chat System update_account.php File SQL Injection Vulnerability
Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that stems from an error in the parameter musername in the file /user/updateaccount.php that lacks validation of an externally entered SQL statement. An attacker can use this vulnerability to execute illegal SQL...
CVE-2025-7511
A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/updateaccount.php. The manipulation of the argument musername leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2025-7511
CVE-2025-7511 affects code-projects Chat System 1.0. The vulnerability is a SQL injection in the handling of the musername parameter in the file /user/update_account.php, enabling remote exploitation. Multiple connected sources confirm the issue and state that the exploit has been publicly disclo...
Code-Projects Chat System 注入漏洞
Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that stems from an error in the parameter musername in the file /user/updateaccount.php that lacks validation of an externally entered SQL statement. An attacker can use this vulnerability to execute illegal SQL...
CVE-2024-9041
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...
CVE-2021-29055
Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in studentprofile.php...
CVE-2025-2985
A vulnerability was found in code-projects Payroll Management System 1.0. It has been classified as critical. This affects an unknown part of the file updateaccount.php. The manipulation of the argument deduction leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2025-2985
The CVE-2025-2985 entry concerns code-projects Payroll Management System 1.0. The vulnerability affects the update_account.php logic, where manipulating the deduction parameter enables SQL injection. Exploitation is remote and can result in high-impact outcomes (confidentiality, integrity, and av...
CVE-2025-0201
A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user/updateaccount.php. The manipulation of the argument username leads to sql injection. The attack may be...
Code-Projects Point of Sales and Inventory Management System 注入漏洞
Code-Projects Point of Sales and Inventory Management System is an open source point of sale and inventory management system from Code-Projects. An injection vulnerability exists in Code-Projects Point of Sales and Inventory Management System version 1.0, which originates from an SQL injection...
PT-2025-3774 · Code Projects · Code-Projects Point Of Sales/Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Point of Sales and Inventory Management System version 1.0 Description: A critical issue was found in the system, affecting some unknown functionality of the file /user/update account.php. The manipulation of the username argume...
CodeAstro Hospital Management System 安全漏洞
CodeAstro Hospital Management System is a hospital management system from CodeAstro, Inc. A security vulnerability exists in CodeAstro Hospital Management System version 1.0, which originates from an unrestricted file upload issue contained in the docdpic parameter of the...
CVE-2024-9041
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...
CVE-2024-46376
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...
CVE-2024-46376
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...
CVE-2024-46376
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...
SourceCodester Best House Rental Management System 安全漏洞
SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A security vulnerability exists in SourceCodester Best House Rental Management System version 1.0, which is caused by an arbitrary file upload vulnerability in the updateaccount functi...