CVE-2026-10184

A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been...

CVE-2026-10184 SourceCodester Hospitals Patient Records Management System Users.php delete sql injection

A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been...

CVE-2026-10184

The CVE affects SourceCodester Hospitals Patient Records Management System 1.0. The vulnerability resides in /classes/Users.php?f=delete where manipulating the ID parameter causes a SQL injection. It can be exploited remotely and an exploit has been released publicly. No remediation or versioned ...

EUVD-2020-16090

Malware in sbrugna...

CVE-2025-1173

A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file processusersdel.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...

1000 Projects Bookstore Management System SQL注入漏洞

1000 Projects Bookstore Management System is an open source bookstore management system from 1000 Projects. A SQL injection vulnerability exists in 1000 Projects Bookstore Management System version 1.0, which stems from a parameter id in the file processusersdel.php that can lead to SQL injection...

CVE-2023-42231

Pat Infinite Solutions HelpdeskAdvanced = 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can delete admin users by sending a request to the "WSCView/Delete" function...

CVE-2024-8345

A vulnerability was found in SourceCodester Music Gallery Site 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=delete. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...

Anchor 安全漏洞

Anchor is an open source lightweight blogging system. A security vulnerability exists in Anchor CMS version v0.12.7, which stems from a cross-site request forgery CSRF in /anchor/admin/users/delete/2...

CVE-2024-0248

The EazyDocs WordPress plugin before 2.4.0 re-introduced CVE-2023-6029 https://wpscan.com/vulnerability/7a0aaf85-8130-4fd7-8f09-f8edc929597e/ in 2.3.8, allowing any authenticated users, such as subscriber to delete arbitrary posts, as well as add and delete documents/sections. The issue was...

CVE-2021-36569

Cross Site Request Forgery vulnerability in FUEL-CMS 1.4.13 allows remote attackers to run arbitrary code via post ID to /users/delete/2...

PT-2023-12290 · Fuel Cms · Fuel Cms

Name of the Vulnerable Software and Affected Versions: FUEL-CMS version 1.4.13 Description: The issue allows remote attackers to run arbitrary code via post ID to the "/users/delete/2" API endpoint. This is a Cross Site Request Forgery vulnerability. Recommendations: For FUEL-CMS version 1.4.13, ...

Online Diagnostic Lab Management System SQL注入漏洞

Online Diagnostic Lab Management System is an online diagnostic lab management system. A security vulnerability exists in Online Diagnostic Lab Management System v1.0, which stems from the id parameter of its /odlms/classes/Users.php?f=delete component that allows an attacker to implement SQL...

BigTree-CMS 4.2.x < 4.2.17 Multiple Vulnerabilities

Binary data 700143.prm...

CVE-1999-0732

The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links...