Lucene search
K

61 matches found

Cvelist
Cvelist
added 2025/09/15 2:2 a.m.10 views

CVE-2025-10421 SourceCodester Student Grading System update_account.php sql injection

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS0.00351EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/15 2:2 a.m.3 views

CVE-2025-10421 SourceCodester Student Grading System update_account.php sql injection

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS6.4AI score0.00351EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.4 views

SourceCodester Student Grading System SQL注入漏洞

SourceCodester Student Grading System is an open source student grading system from SourceCodester. A SQL injection vulnerability exists in SourceCodester Student Grading System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /updateaccount.php, which could le...

8.8CVSS7AI score0.00351EPSS
Exploits1References5
CNVD
CNVD
added 2025/07/18 12:0 a.m.3 views

Chat System update_account.php File SQL Injection Vulnerability

Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that stems from an error in the parameter musername in the file /user/updateaccount.php that lacks validation of an externally entered SQL statement. An attacker can use this vulnerability to execute illegal SQL...

6.5CVSS8.3AI score0.003EPSS
Exploits1References1
OSV
OSV
added 2025/07/13 2:15 a.m.7 views

CVE-2025-7511

A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/updateaccount.php. The manipulation of the argument musername leads to sql injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS5.8AI score0.003EPSS
Exploits1References5
CVE
CVE
added 2025/07/13 1:32 a.m.27 views

CVE-2025-7511

CVE-2025-7511 affects code-projects Chat System 1.0. The vulnerability is a SQL injection in the handling of the musername parameter in the file /user/update_account.php, enabling remote exploitation. Multiple connected sources confirm the issue and state that the exploit has been publicly disclo...

6.5CVSS6.8AI score0.003EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/07/13 12:0 a.m.3 views

Code-Projects Chat System 注入漏洞

Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that stems from an error in the parameter musername in the file /user/updateaccount.php that lacks validation of an externally entered SQL statement. An attacker can use this vulnerability to execute illegal SQL...

6.5CVSS8.2AI score0.003EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 8:14 a.m.3 views

CVE-2024-9041

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...

8.8CVSS7.4AI score0.00614EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:29 p.m.4 views

CVE-2021-29055

Cross Site Scripting XSS vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in studentprofile.php...

6.1CVSS5.9AI score0.00853EPSS
Exploits1References1
OSV
OSV
added 2025/03/31 9:15 a.m.3 views

CVE-2025-2985

A vulnerability was found in code-projects Payroll Management System 1.0. It has been classified as critical. This affects an unknown part of the file updateaccount.php. The manipulation of the argument deduction leads to sql injection. It is possible to initiate the attack remotely. The exploit...

8.8CVSS6.5AI score0.00451EPSS
Exploits1References5
CVE
CVE
added 2025/03/31 9:0 a.m.73 views

CVE-2025-2985

The CVE-2025-2985 entry concerns code-projects Payroll Management System 1.0. The vulnerability affects the update_account.php logic, where manipulating the deduction parameter enables SQL injection. Exploitation is remote and can result in high-impact outcomes (confidentiality, integrity, and av...

8.8CVSS6.7AI score0.00451EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/01/04 4:15 a.m.2 views

CVE-2025-0201

A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user/updateaccount.php. The manipulation of the argument username leads to sql injection. The attack may be...

6.5CVSS5.8AI score0.00421EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/01/04 12:0 a.m.8 views

Code-Projects Point of Sales and Inventory Management System 注入漏洞

Code-Projects Point of Sales and Inventory Management System is an open source point of sale and inventory management system from Code-Projects. An injection vulnerability exists in Code-Projects Point of Sales and Inventory Management System version 1.0, which originates from an SQL injection...

6.5CVSS7AI score0.00421EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/01/04 12:0 a.m.4 views

PT-2025-3774 · Code Projects · Code-Projects Point Of Sales/Inventory Management System

Name of the Vulnerable Software and Affected Versions: code-projects Point of Sales and Inventory Management System version 1.0 Description: A critical issue was found in the system, affecting some unknown functionality of the file /user/update account.php. The manipulation of the username argume...

6.5CVSS7AI score0.00421EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/11/25 12:0 a.m.5 views

CodeAstro Hospital Management System 安全漏洞

CodeAstro Hospital Management System is a hospital management system from CodeAstro, Inc. A security vulnerability exists in CodeAstro Hospital Management System version 1.0, which originates from an unrestricted file upload issue contained in the docdpic parameter of the...

8.8CVSS6.6AI score0.00597EPSS
Exploits1References1
OSV
OSV
added 2024/09/20 5:15 p.m.3 views

CVE-2024-9041

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...

8.8CVSS6.5AI score0.00614EPSS
Exploits1References5
NVD
NVD
added 2024/09/18 9:15 p.m.16 views

CVE-2024-46376

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...

9.8CVSS0.0106EPSS
Exploits0References1
OSV
OSV
added 2024/09/18 9:15 p.m.3 views

CVE-2024-46376

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...

9.8CVSS5.9AI score0.0106EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/18 12:0 a.m.22 views

CVE-2024-46376

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...

0.0106EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/18 12:0 a.m.5 views

SourceCodester Best House Rental Management System 安全漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A security vulnerability exists in SourceCodester Best House Rental Management System version 1.0, which is caused by an arbitrary file upload vulnerability in the updateaccount functi...

9.8CVSS7.1AI score0.0106EPSS
Exploits0References2
Rows per page
Query Builder