CVE-2026-10155

The CVE-2026-10155 describes a SQL injection in Bdtask Multi-Store Inventory Management System 1.0, specifically in accounts_report_search (application/modules/accounts/controllers/Accounts.php of Accounts Report Handler). The vulnerability is triggered by manipulating the argument dtpToDate, ena...

CVE-2026-2171 code-projects Online Student Management System Login accounts.php sql injection

A vulnerability was found in code-projects Online Student Management System 1.0. Affected is an unknown function of the file accounts.php of the component Login. Performing a manipulation of the argument username/password results in sql injection. The attack can be initiated remotely. The exploit...

PT-2026-7003

Name of the Vulnerable Software and Affected Versions code-projects Online Student Management System version 1.0 Description A flaw exists in the Login component of the Online Student Management System. Specifically, a SQL injection issue is present in the accounts.php file due to manipulation of...

PT-2020-14539 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version cwp-e17.0.9.8.923 Description: This issue allows remote attackers to disclose sensitive information on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the...

CVE-2018-19913

DomainMOD through 4.11.01 has XSS via the assets/add/registrar-accounts.php UserName, Reseller ID, or notes field...

CVE-2018-19913

DomainMOD through 4.11.01 has XSS via the assets/add/registrar-accounts.php UserName, Reseller ID, or notes field...

CVE-2018-19913

CVE-2018-19913 affects DomainMOD up to version 4.11.01. The vulnerability is an XSS in assets/add/registrar-accounts.php, exploitable via the UserName, Reseller ID, or Notes fields. Public evidence includes exploit-db/packetstorm references and related CNVD/NVD entries. The connected documents co...

CVE-2006-1638

Multiple SQL injection vulnerabilities in aWebBB 1.2 allow remote attackers to execute arbitrary SQL commands via the 1 Username parameter to a accounts.php, b changep.php, c editac.php, d feedback.php, e fpass.php, f login.php, g post.php, h reply.php, or i replylog.php; 2 p parameter to j...

Autorank PHP SQL Injection Vulnerabilities

Vendor : JMB Software URL : http://www.jmbsoft.com Version : AutoRank PHP 2.0.4 && Others? Risk : SQL Injection Vulnerability Description: The description as taken from the Autorank website "AutoRank PHP is our next generation toplist software, written completely in PHP and backed by a MySQL...

AutoRank PHP 2.0.4 - SQL Injection (PoC)

AutoRank PHP 2.0.4 - SQL Injection PoC AutoRank PHP SQL Injection Vendor: JMB Software Product: AutoRank PHP Version: = 2.0.4 Website: http://www.jmbsoft.com/ BID: 9251 Description: The description as taken from the Autorank website "AutoRank PHP is our next generation toplist software, written...

AutoRank PHP < 2.0.4 - SQL Injection (PoC)

AutoRank PHP SQL Injection Vendor: JMB Software Product: AutoRank PHP Version: = 2.0.4 Website: http://www.jmbsoft.com/ BID: 9251 Description: The description as taken from the Autorank website "AutoRank PHP is our next generation toplist software, written completely in PHP and backed by a MySQL...