177 matches found
CVE-2025-10595 SourceCodester Online Student File Management System delete_user.php sql injection
A vulnerability has been found in SourceCodester Online Student File Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/deleteuser.php. The manipulation of the argument userid leads to sql injection. The attack can be initiated remotely. The exploit has...
CVE-2025-10594
CVE-2025-10594 affects SourceCodester Online Student File Management System 1.0. The vulnerability is an SQL injection in the /admin/delete_student.php endpoint caused by unsafely manipulating the stud_id parameter, exploitable remotely. Multiple connected sources confirm the flaw; exploit is pub...
PT-2025-38154
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A SQL injection flaw exists in the /admin/delete student.php file due to manipulation of the stud id argument. This issue is remotely exploitable. The exploit has...
PT-2025-38228
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Exam Form Submission version 1.0 Description: A SQL injection vulnerability exists due to manipulation of the ID argument in the /admin/delete s1.php file. This vulnerability can be exploited remotely. The exploit has be...
SourceCodester Online Student File Management 安全漏洞
SourceCodester Online Student File Management is a SourceCodester open source online student file management system. A security vulnerability exists in SourceCodester Online Student File Management version 1.0, which originates from an incorrect manipulation of the parameter studentid in the file...
PT-2025-38159
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A vulnerability exists in SourceCodester Online Student File Management System 1.0 related to SQL injection. The issue is located in the /admin/delete user.php file...
PT-2025-38289
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Exam Form Submission version 1.0 Description: A SQL injection issue exists in SourceCodester Online Exam Form Submission 1.0. Manipulation of the ID argument in the /admin/delete user.php API endpoint can lead to SQL...
CVE-2025-34157
Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a stored cross-site scripting XSS attack in the project creation workflow. An authenticated user with low privileges can create a project with a maliciously crafted name containing embedded JavaScript. When an administrator attempts to...
CVE-2025-8494
A vulnerability, which was classified as critical, has been found in code-projects Intern Membership Management System 1.0. This issue affects some unknown processing of the file /admin/deletestudent.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated...
code-projects Exam Form Submission 注入漏洞
Exam Form Submission is an exam form. Exam Form Submission suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in parameter ID in file /admin/deletes8.php. An attacker can exploit this vulnerability to execute illegal SQL commands...
CVE-2025-8271
A vulnerability was found in code-projects Exam Form Submission 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/deletes3.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2025-8269
A vulnerability was found in code-projects Exam Form Submission 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletes1.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has be...
CVE-2025-8252
A vulnerability was found in code-projects Exam Form Submission 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletes5.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has be...
CVE-2025-8253
A vulnerability was found in code-projects Exam Form Submission 1.0. It has been classified as critical. This affects an unknown part of the file /admin/deletes6.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
Code-Projects Exam Form Submission 注入漏洞
Code-Projects Exam Form Submission is an exam form from Code-Projects open source. An injection vulnerability exists in Code-Projects Exam Form Submission version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in file /admin/deletes6.php...
Code-Projects Exam Form Submission 注入漏洞
Code-Projects Exam Form Submission is an exam form from Code-Projects open source. An injection vulnerability exists in code-projects Exam Form Submission version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in file /admin/deletes4.php...
Code-Projects Exam Form Submission 注入漏洞
Code-Projects Exam Form Submission is an open source exam form from Code-Projects. An injection vulnerability exists in code-projects Exam Form Submission version 1.0, which originates from SQL injection due to manipulation of the parameter ID in the file /admin/deletes3.php...
Code-Projects Exam Form Submission 注入漏洞
Code-Projects Exam Form Submission is an exam form from Code-Projects open source. An injection vulnerability exists in Code-Projects Exam Form Submission version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in file /admin/deletes5.php...
CVE-2025-8234
A vulnerability was found in code-projects Online Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletemember.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit...
Code-Projects Online Ordering System 注入漏洞
Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in Code-Projects Online Ordering System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file /admin/deleteuser.ph...