CVE-2025-15049

The CVE-2025-15049 entry applies to code-projects Online Farm System 1.0, where the vulnerability is in an unknown function of /addProduct.php. The flaw is a SQL injection triggered by manipulating the Username parameter, with remote initiation and a publicly available exploit. These details are ...

CampCodes Supplier Management System SQL注入漏洞

CampCodes Supplier Management System is a supplier management system from CampCodes, Inc. A SQL injection vulnerability exists in CampCodes Supplier Management System version 1.0, which stems from an incorrect manipulation of the parameter txtProductName in the file /admin/addproduct.php, which...

CVE-2025-3783

A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-product.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack can be...

CVE-2024-42577

A Cross-Site Request Forgery CSRF in the component addproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2022-43085

An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...