14 matches found
CVE-2026-0852
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852
CVE-2026-0852 affects code-projects Online Music Site 1.0. The vulnerability is a SQL injection in the unknown function of the file /Administrator/PHP/AdminUpdateUser.php, triggered by manipulation of the ID argument. The attack can be executed remotely and the exploit has been released publicly....
EUVD-2026-1957
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852 code-projects Online Music Site AdminUpdateUser.php sql injection
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
Code-Projects Online Music Site SQL注入漏洞
Code-Projects Online Music Site is a Code-Projects open source online music site. A SQL injection vulnerability exists in code-projects Online Music Site version 1.0, which stems from incorrect manipulation of the parameter ID in the file /Administrator/PHP/AdminUpdateUser.php, which can lead to...
CVE-2025-14621
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php. The manipulation of the argument userid leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and...
CVE-2025-14662
code-projects Student File Management System 1.0 is affected by a Cross-Site Scripting (XSS) vulnerability in the Update User Page, specifically /admin/update_user.php. The flaw arises from an improper handling/manipulation of input, enabling remote attackers to trigger XSS. Multiple connected so...
Code-Projects Student File Management System 代码注入漏洞
Student File Management System is a student file management system. A cross-site scripting vulnerability exists in Student File Management System, which originates from an incorrect operation of the file /admin/updateuser.php, for which no detailed vulnerability details are currently available...
CVE-2025-14621 code-projects Student File Management System update_user.php sql injection
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php. The manipulation of the argument userid leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and...
CampCodes School File Management SQL注入漏洞
CampCodes School File Management is a school file management system from CampCodes Philippines. A SQL injection vulnerability exists in CampCodes School File Management version 1.0, which stems from an incorrect manipulation of the parameter userid in the file /admin/updateuser.php, which could...
PT-2025-45476
Name of the Vulnerable Software and Affected Versions Campcodes School File Management version 1.0 Description A security flaw exists in Campcodes School File Management 1.0. The issue is related to SQL injection, which can be triggered by manipulating the user id argument in the /admin/update...
Chat System update_user.php File Cross-Site Scripting Vulnerability
Chat System is a chat system. Chat System suffers from a cross-site scripting vulnerability that stems from a lack of sufficient validation and escaping of the name parameter input in the file /admin/updateuser.php. The vulnerability can be exploited to conduct a cross-site scripting attack by...