403 matches found
Code-Projects Online Restaurant Management System 安全漏洞
Code-Projects Online Restaurant Management System is a Code-Projects open source online restaurant management system. A security vulnerability exists in Code-Projects Online Restaurant Management System version 1.0, which stems from improper handling of parameter IDs in the /admin/memberupdate.ph...
CVE-2025-3138
A vulnerability has been found in PHPGurukul Online Security Guards Hiring System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/edit-guard-detail.php. The manipulation of the argument editid leads to sql injection. The attack can be...
PHPGurukul Art Gallery Management System 注入漏洞
Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability, which originates from the lack of validation of external input SQL statements for the parameter arttype in /admin/edit-art-type-detail.php?editid=1. An...
CVE-2024-11258
A vulnerability classified as critical was found in 1000 Projects Beauty Parlour Management System 1.0. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has bee...
Codezips Gym Management System 注入漏洞
Codezips Gym Management System is an open source gym management system from Codezips. An injection vulnerability exists in Codezips Gym Management System version 1.0, which stems from the parameter name in the file /dashboard/admin/editmember.php that can lead to SQL injection...
Chat System deleteuser.php File SQL Injection Vulnerability
Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that originates from a SQL injection in the parameter id of the /admin/deleteuser.php file. An attacker can exploit this vulnerability to obtain sensitive information...
CVE-2025-0232
A vulnerability was found in Codezips Blood Bank Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /successadmin.php. The manipulation of the argument psw leads to sql injection. The attack may be launched remotely. The exploit has...
Kashipara E-learning Management System 安全漏洞
Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0, which originates from an SQL injection vulnerability in /admin/deletestudent.php...
PT-2024-16690 · Unknown · 1000 Projects Bookstore Management System
Name of the Vulnerable Software and Affected Versions: 1000 Projects Bookstore Management System version 1.0 Description: A critical issue affects the processing of the file /admin/process category add.php. The manipulation of the argument cat leads to SQL injection. The attack may be initiated...
PHPGurukul Online DJ Booking Management System 安全漏洞
PHPGurukul Online DJ Booking Management System is an online DJ booking management system from PHPGurukul. A security vulnerability exists in PHPGurukul Online DJ Booking Management System v1.0, which originates from a reflected cross-site scripting vulnerability in the searchdata parameter of the...
CVE-2024-10337
A vulnerability classified as critical has been found in SourceCodeHero Clothes Recommendation System 1.0. Affected is an unknown function of the file /admin/home.php?con=add. The manipulation of the argument cat/subcat/ t1/t2/text leads to sql injection. It is possible to launch the attack...
PHPGurukul Medical Card Generation System SQL注入漏洞
PHPGurukul Medical Card Generation System is a medical card generation system from PHPGurukul Inc. A SQL injection vulnerability exists in version 1.0 of the PHPGurukul Medical Card Generation System, which originates from the parameter viewid in the file /admin/view-enquiry.php that can lead to...
CVE-2024-48570
Client Management System 1.0 was discovered to contain a SQL injection vulnerability via the Between Dates Reports parameter at /admin/bwdates-reports-ds.php...
PT-2024-39428 · Unknown · Code-Projects Blood Bank System
Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank System version 1.0 Description: A critical vulnerability was found in the code-projects Blood Bank System. This issue affects the file /admin/blood/update/o-.php and is related to the manipulation of the bloodname...
CVE-2024-46085
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/rename...
CVE-2024-46362
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/createdirectory...
PHPGurukul Bus Pass Management System 安全漏洞
Bus Pass Management System is a bus pass management system. Bus Pass Management System has a cross-site scripting vulnerability, the vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the fromdate and todate parameters in the...
PT-2024-38999 · Unknown · Yunke Online School System
Name of the Vulnerable Software and Affected Versions: Yunke Online School System versions up to 1.5.5 Description: A vulnerability was found in the Yunke Online School System, affecting the file /admin/educloud/videobind.html. This issue leads to the inclusion of sensitive information in the...
PT-2024-38833 · Classcms · Classcms
Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.8 Description: A vulnerability was found in ClassCMS, affecting an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched...
PT-2024-38629 · Sourcecodester · Sourcecodester Yoga Class Registration System
Name of the Vulnerable Software and Affected Versions: SourceCodester Yoga Class Registration System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown processing of the file /admin/inquiries/view inquiry.php. The manipulation of th...