608 matches found
CVE-2022-30795
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductimage.php...
CVE-2022-30810
elitecms v1.01 is vulnerable to SQL Injection via admin/editpost.php...
CVE-2020-10406
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-group.php by adding a question mark ? followed by the payload...
CVE-2025-5077
A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument Category leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CampCodes Online Shopping Portal 安全漏洞
CampCodes Online Shopping Portal is an online shopping portal from CampCodes, Inc. A security vulnerability exists in CampCodes Online Shopping Portal version 1.0, which originates from a SQL injection due to the incorrect operation of the parameter Category in the file /admin/edit-subcategory.ph...
CVE-2025-5056
A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/edit-products.php. The manipulation of the argument Category leads to sql injection. The attack can be launched...
CampCodes Online Shopping Portal 注入漏洞
CampCodes Online Shopping Portal is an online shopping portal from CampCodes, Inc. An injection vulnerability exists in CampCodes Online Shopping Portal version 1.0, which stems from improper manipulation of the Category parameter in the file /admin/edit-category.php, which could lead to SQL...
CampCodes Online Shopping Portal 代码问题漏洞
CampCodes Online Shopping Portal is an online shopping portal from CampCodes, Inc. A code issue vulnerability exists in CampCodes Online Shopping Portal version 1.0, which stems from improper manipulation of the productimage1/productimage2/productimage3 parameter in file...
Vehicle Record Management System /edit-vehicle.php File Cross-Site Scripting Vulnerability
Vehicle Record Management System is a vehicle record management system. Vehicle Record Management System has a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the vehiclename parameter in /admin/edit-vehicle.php, which...
CVE-2025-4910
A vulnerability, which was classified as critical, has been found in PHPGurukul Zoo Management System 2.1. This issue affects some unknown processing of the file /admin/edit-animal-details.php. The manipulation of the argument aname leads to sql injection. The attack may be initiated remotely. Th...
PHPGurukul Zoo Management System 安全漏洞
Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter aname in the file /admin/edit-animal-details.php. An attacker can exploit this...
CVE-2025-44182
Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting XSS via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code...
CVE-2025-4697
A vulnerability was found in PHPGurukul Directory Management System 2.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/edit-directory.php. The manipulation of the argument editid leads to sql injection. The attack may be launched remotely...
CVE-2025-44182
Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting XSS via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code...
PHPGurukul Vehicle Record Management System 安全漏洞
Vehicle Record Management System is a vehicle record management system. Vehicle Record Management System has a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the vehiclename parameter in /admin/edit-vehicle.php, which...
Pre-School Enrollment System /admin/edit-teacher.php File SQL Injection Vulnerability
Pre-School Enrollment System is a web-based preschool enrollment system. The Pre-School Enrollment System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter mobilenumber in the file /admin/edit-teacher.php. ...
Emergency Ambulance Hiring Portal /admin/edit-ambulance.php File SQL Injection Vulnerability
Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from improper handling of the parameter dconnum in the file /admin/edit-ambulance.php, no details of the vulnerability are available a...
Directory Management System admin/edit-directory.php File SQL Injection Vulnerability
Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that stems from improper handling of the email parameter in the admin/edit-directory.php file, which can be exploited to query strings and ultimately trick the serv...
CVE-2025-4467
A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-admin.php. The manipulation of the argument id/txtfullname/txtemail/cmddesignation leads to sql injection. The attack...
CVE-2025-4264
A vulnerability classified as critical has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected is an unknown function of the file /admin/edit-ambulance.php. The manipulation of the argument dconnum leads to sql injection. It is possible to launch the attack remotely. The...