CVE-2025-12593 code-projects Simple Online Hotel Reservation System Photo edit_room.php unrestricted upload

A vulnerability was identified in code-projects Simple Online Hotel Reservation System 2.0. The impacted element is an unknown function of the file /admin/editroom.php of the component Photo Handler. The manipulation leads to unrestricted upload. The attack is possible to be carried out remotely...

PT-2025-44731

Name of the Vulnerable Software and Affected Versions code-projects Simple Online Hotel Reservation System version 2.0 Description A flaw exists in code-projects Simple Online Hotel Reservation System 2.0 that allows for unrestricted file uploads. This issue is located within the Photo Handler...

CVE-2025-12201

A vulnerability was identified in ajayrandhawa User-Management-PHP-MYSQL up to fedcf58797bf2791591606f7b61fdad99ad8bff1. This affects an unknown part of the file /admin/edit-user.php of the component User Management Interface. Such manipulation of the argument image leads to unrestricted upload. ...

CVE-2025-12201

A vulnerability was identified in ajayrandhawa User-Management-PHP-MYSQL up to fedcf58797bf2791591606f7b61fdad99ad8bff1. This affects an unknown part of the file /admin/edit-user.php of the component User Management Interface. Such manipulation of the argument image leads to unrestricted upload. ...

PT-2025-41639

Name of the Vulnerable Software and Affected Versions CodeAstro Gym Management System version 1.0 Description A flaw exists in CodeAstro Gym Management System version 1.0 that allows for remote SQL injection. The issue is located in the file /admin/edit-equipmentform.php and involves manipulation...

PT-2025-41210

Name of the Vulnerable Software and Affected Versions code-projects Voting System version 1.0 Description A flaw exists in code-projects Voting System 1.0, specifically within an unknown function of the /admin/candidates edit.php file. Manipulation of the Firstname, Lastname, and Platform argumen...

CVE-2025-11342

A weakness has been identified in code-projects Online Course Registration 1.0. This impacts an unknown function of the file /admin/edit-course.php. Executing manipulation of the argument coursecode can lead to sql injection. The attack can be executed remotely. The exploit has been made availabl...

EUVD-2020-23263

Malware in sbrugna...

EUVD-2020-2951

Malware in sbrugna...

EUVD-2020-2920

Malware in sbrugna...

EUVD-2007-4619

Malware in sbrugna...

EUVD-2018-5959

Malware in sbrugna...

EUVD-2020-2854

Malware in sbrugna...

EUVD-2020-2918

Malware in sbrugna...

EUVD-2019-16717

Malware in sbrugna...

CVE-2025-11342

A weakness has been identified in code-projects Online Course Registration 1.0. This impacts an unknown function of the file /admin/edit-course.php. Executing manipulation of the argument coursecode can lead to sql injection. The attack can be executed remotely. The exploit has been made availabl...

EUVD-2025-32556

A weakness has been identified in code-projects Online Course Registration 1.0. This impacts an unknown function of the file /admin/edit-course.php. Executing manipulation of the argument coursecode can lead to sql injection. The attack can be executed remotely. The exploit has been made availabl...

CVE-2025-11342 code-projects Online Course Registration edit-course.php sql injection

A weakness has been identified in code-projects Online Course Registration 1.0. This impacts an unknown function of the file /admin/edit-course.php. Executing manipulation of the argument coursecode can lead to sql injection. The attack can be executed remotely. The exploit has been made availabl...

CVE-2025-11342

Summary (CVE-2025-11342): Multiple connected sources confirm a SQL injection vulnerability in code-projects Online Course Registration 1.0, arising from lack of validation of the coursecode parameter in /admin/edit-course.php. The vulnerability is exploitable remotely and has publicly available e...

Code-Projects Online Course Registration SQL注入漏洞

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter coursecode in the file /admin/edit-course.php. An attacker ca...