14 matches found
CVE-2026-0852
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
EUVD-2026-1957
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852 code-projects Online Music Site AdminUpdateUser.php sql injection
A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-0852
CVE-2026-0852 affects code-projects Online Music Site 1.0. The vulnerability is a SQL injection in the unknown function of the file /Administrator/PHP/AdminUpdateUser.php, triggered by manipulation of the ID argument. The attack can be executed remotely and the exploit has been released publicly....
Code-Projects Online Music Site SQL注入漏洞
Code-Projects Online Music Site is a Code-Projects open source online music site. A SQL injection vulnerability exists in code-projects Online Music Site version 1.0, which stems from incorrect manipulation of the parameter ID in the file /Administrator/PHP/AdminUpdateUser.php, which can lead to...
CVE-2025-14621
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php. The manipulation of the argument userid leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and...
CVE-2025-14662
code-projects Student File Management System 1.0 is affected by a Cross-Site Scripting (XSS) vulnerability in the Update User Page, specifically /admin/update_user.php. The flaw arises from an improper handling/manipulation of input, enabling remote attackers to trigger XSS. Multiple connected so...
Code-Projects Student File Management System 代码注入漏洞
Student File Management System is a student file management system. A cross-site scripting vulnerability exists in Student File Management System, which originates from an incorrect operation of the file /admin/updateuser.php, for which no detailed vulnerability details are currently available...
CVE-2025-14621 code-projects Student File Management System update_user.php sql injection
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php. The manipulation of the argument userid leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and...
PT-2025-45476
Name of the Vulnerable Software and Affected Versions Campcodes School File Management version 1.0 Description A security flaw exists in Campcodes School File Management 1.0. The issue is related to SQL injection, which can be triggered by manipulating the user id argument in the /admin/update...
CampCodes School File Management SQL注入漏洞
CampCodes School File Management is a school file management system from CampCodes Philippines. A SQL injection vulnerability exists in CampCodes School File Management version 1.0, which stems from an incorrect manipulation of the parameter userid in the file /admin/updateuser.php, which could...
Chat System update_user.php File Cross-Site Scripting Vulnerability
Chat System is a chat system. Chat System suffers from a cross-site scripting vulnerability that stems from a lack of sufficient validation and escaping of the name parameter input in the file /admin/updateuser.php. The vulnerability can be exploited to conduct a cross-site scripting attack by...