CVE-2026-5106 code-projects Exam Form Submission update_fst.php cross site scripting

A flaw has been found in code-projects Exam Form Submission 1.0. The impacted element is an unknown function of the file /admin/updatefst.php. Executing a manipulation of the argument sname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

Code-Projects Exam Form Submission 代码注入漏洞

Code-Projects Exam Form Submission is an open-source exam form developed by Code-Projects. Version 1.0 of Code-Projects Exam Form Submission contains a code injection vulnerability. This vulnerability arises from incorrect handling of the parameter sname in the file admin/updatefst.php, which may...

PT-2026-27032

A vulnerability was detected in code-projects Exam Form Submission 1.0. This impacts an unknown function of the file /admin/update s1.php. Performing a manipulation of the argument sname results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be us...

CVE-2026-4474 itsourcecode University Management System admin_single_student_update.php cross site scripting

A flaw has been found in itsourcecode University Management System 1.0. Impacted is an unknown function of the file /adminsinglestudentupdate.php. This manipulation of the argument stname causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be...

CVE-2026-4474

The CVE-2026-4474 entry concerns itsourcecode University Management System 1.0. The vulnerability lies in the admin_single_student_update.php function, where manipulation of the st_name argument enables cross-site scripting (XSS). The attack can be initiated remotely and exploit code has been pub...

PT-2026-21421

A weakness has been identified in YiFang CMS up to 2.0.5. This affects the function update of the file app/db/admin/D adManage.php of the component Extended Management Module. Executing a manipulation of the argument Name can lead to cross site scripting. The attack may be performed from remote...

PT-2026-2042

Name of the Vulnerable Software and Affected Versions code-projects Online Music Site version 1.0 Description A security flaw exists in code-projects Online Music Site 1.0. The issue involves a SQL injection impacting an unknown function within the file /Administrator/PHP/AdminUpdateUser.php...

PT-2025-41770

Name of the Vulnerable Software and Affected Versions code-projects Automated Voting System version 1.0 Description A flaw exists in code-projects Automated Voting System that allows for remote SQL injection. The issue is located in the /admin/update user.php file, specifically through manipulati...

PT-2024-17892 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue has been found in the code-projects Chat System, affecting the /admin/update user.php file. The manipulation of the id argument leads to SQL injection. This issue can be...