177 matches found
Simple Online Hotel Reservation System delete_room.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter roomid in the file...
CVE-2025-6451
A vulnerability was found in code-projects Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/deletepending.php. The manipulation of the argument transactionid leads to sql injection. The attack can be initiated...
Projectworlds Responsive E-Learning System 安全漏洞
Projectworlds Responsive E-Learning System is a responsive e-learning system from Projectworlds India. A security vulnerability exists in Projectworlds Responsive E-Learning System version 1.0, which stems from SQL injection due to incorrect manipulation of the parameter ID in the file...
CVE-2024-37848
SQL Injection vulnerability in Online-Bookstore-Project-In-PHP v1.0 allows a local attacker to execute arbitrary code via the admindelete.php component...
CVE-2021-32008
This issue affects: Secomea GateManager Version 9.6.621421014 and all prior versions. Improper Limitation of a Pathname to restricted directory, allows logged in GateManager admin to delete system Files or Directories...
SourceCodester Doctors Appointment System 注入漏洞
SourceCodester Doctors Appointment System is SourceCodester open source a doctor appointment system. An injection vulnerability exists in SourceCodester Doctors Appointment System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...
SourceCodester Doctors Appointment System 注入漏洞
SourceCodester Doctors Appointment System is SourceCodester open source a doctor appointment system. An injection vulnerability exists in SourceCodester Doctors Appointment System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...
CVE-2025-3536
A vulnerability was found in Tutorials-Website Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/delete-user.php. The manipulation of the argument ID leads to improper authorization. The attack may be launched...
PT-2025-5882 · Codeastro · Codeastro Complaint Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro Complaint Management System version 1.0 Description: The issue concerns incorrect access control in the endpoint "/admin/m delete.php" that allows unauthorized attackers to delete complaints arbitrarily by modifying the id parameter...
PT-2025-3835 · Code Projects · Cinema Seat Reservation System
Name of the Vulnerable Software and Affected Versions: code-projects Cinema Seat Reservation System version 1.0 Description: A critical issue has been found in the Cinema Seat Reservation System. It affects an unknown functionality of the file /admin/deleteBooking.php. The manipulation of the id...
Code-Projects Chat System 安全漏洞
Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that originates from a SQL injection in the parameter id of the /admin/deleteuser.php file. An attacker can exploit this vulnerability to obtain sensitive information...
CVE-2024-54934
Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteclass.php...
CVE-2024-54931
A SQL Injection was found in /admin/deleteevent.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter...
CVE-2024-54928
kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteteacher.php,...
CVE-2024-54929
KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletesubject.php...
PT-2024-36448 · Unknown · Kashipara E-Learning Management System
Name of the Vulnerable Software and Affected Versions: Kashipara E-Learning Management System version 1.0 Description: The issue concerns a SQL Injection vulnerability in the /admin/delete student.php endpoint. This vulnerability allows for potential exploitation. Recommendations: For Kashipara...
Kashipara E-learning Management System 安全漏洞
Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0, which originates from an SQL injection vulnerability in /admin/deleteclass.php...
PT-2024-36449 · Unknown · Kashipara E-Learning Management System
Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System version 1.0 Description: A SQL Injection issue was found in the /admin/delete event.php endpoint, allowing remote attackers to execute arbitrary SQL commands and gain unauthorized database access via the...
PT-2024-36447 · Unknown · Kashipara E-Learning Management System
Name of the Vulnerable Software and Affected Versions: KASHIPARA E-learning Management System version 1.0 Description: The issue concerns a SQL Injection vulnerability in the /admin/delete subject.php endpoint. This vulnerability allows for potential exploitation by injecting malicious SQL code...
PT-2024-36451 · Unknown · Kashipara E-Learning Management System
Name of the Vulnerable Software and Affected Versions: Kashipara E-learning Management System version 1.0 Description: The issue concerns a SQL Injection vulnerability in the /admin/delete content.php endpoint. This vulnerability allows for potential exploitation by injecting malicious SQL code...