14 matches found
CVE-2026-6003 code-projects Simple IT Discussion Forum user.php cross site scripting
A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /admin/user.php. Such manipulation of the argument fname leads to cross site scripting. The attack may be performed from remote. The exploit has been...
CVE-2025-12238
A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected element is an unknown function of the file /admin/user.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has...
PT-2025-43894
Name of the Vulnerable Software and Affected Versions code-projects Automated Voting System version 1.0 Description A security flaw exists in code-projects Automated Voting System 1.0. The issue involves a SQL injection that occurs through manipulation of the Username argument within an unknown...
EUVD-2025-30445
Malicious code in bioql PyPI...
EUVD-2025-12246
Malicious code in bioql PyPI...
CVE-2025-10817
A weakness has been identified in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/adminuser.php. Executing manipulation of the argument firstname can lead to sql injection. The attack may be launched remotely. The exploit has been made...
CVE-2025-10817
A weakness has been identified in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/adminuser.php. Executing manipulation of the argument firstname can lead to sql injection. The attack may be launched remotely. The exploit has been made...
CVE-2025-10817 Campcodes Online Learning Management System admin_user.php sql injection
A weakness has been identified in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/adminuser.php. Executing manipulation of the argument firstname can lead to sql injection. The attack may be launched remotely. The exploit has been made...
CVE-2025-3170
A vulnerability classified as critical has been found in Project Worlds Online Lawyer Management System 1.0. This affects an unknown part of the file /adminuser.php. The manipulation of the argument blockid/unblockid leads to sql injection. It is possible to initiate the attack remotely. The...
PT-2025-14622 · Unknown · Project Worlds Online Lawyer Management System
Name of the Vulnerable Software and Affected Versions: Project Worlds Online Lawyer Management System version 1.0 Description: A critical issue has been discovered, affecting the /admin user.php file. The manipulation of the block id and unblock id arguments leads to SQL injection. This issue can...
PT-2024-34429 · Unknown · Kashipara E-Learning Management System Project
Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System Project version 1.0 Description: A SQL Injection issue was discovered in the /admin/admin user.php file of the kashipara E-learning Management System Project. This issue is exploitable via the username a...
CVE-2024-3537
A vulnerability was found in Campcodes Church Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/adminuser.php. The manipulation of the argument firstname leads to sql injection. The attack may be initiated remotely. The exploit has bee...
RRJ Nueva Ecija Engineer Online Portal Cross-Site Scripting Vulnerability
RRJ Nueva Ecija Engineer Online Portal is an online portal for engineers from RRJ Nueva Ecija. A cross-site scripting vulnerability exists in RRJ Nueva Ecija Engineer Online Portal version 1.0, which stems from the parameter Firstname/Lastname/Username in the file /admin/adminuser.php that causes...
PT-2023-18379 · Sourcecodester · Sourcecodester Task Reminder System
Name of the Vulnerable Software and Affected Versions: SourceCodester Task Reminder System version 1.0 Description: A critical issue has been found in the SourceCodester Task Reminder System, affecting the file /admin/user/manage user.php. The manipulation of the id argument leads to SQL injectio...