CVE-2026-5210

CVE-2026-5210 affects SourceCodester Leave Application System 1.0. The vulnerability is a file inclusion caused by manipulation of an argument (page), enabling remote exploitation. The exploit is public. Affected component/impact details are described as remote code execution through LFI-like beh...

CVE-2026-5209 SourceCodester Leave Application System User Management cross site scripting

A security vulnerability has been detected in SourceCodester Leave Application System 1.0. Affected by this issue is some unknown functionality of the component User Management Handler. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been...

CVE-2026-5209

A security vulnerability has been detected in SourceCodester Leave Application System 1.0. Affected by this issue is some unknown functionality of the component User Management Handler. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been...

CVE-2026-5209 SourceCodester Leave Application System User Management cross site scripting

A security vulnerability has been detected in SourceCodester Leave Application System 1.0. Affected by this issue is some unknown functionality of the component User Management Handler. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been...

CVE-2026-5209

CVE-2026-5209 affects SourceCodester Leave Application System 1.0; the vulnerability lies in the User Management Handler, enabling cross-site scripting. The attack could be launched remotely and public exploit information is available. No remediation details are provided in the supplied documents.

PT-2026-29327

Name of the Vulnerable Software and Affected Versions SourceCodester Leave Application System version 1.0 Description A file inclusion issue exists in SourceCodester Leave Application System. Exploitation involves manipulating the page argument, potentially allowing for remote code execution. The...

SourceCodester Leave Application System 安全漏洞

SourceCodester Leave Application System is an open-source vacation application system developed by SourceCodester. Version 1.0 of the SourceCodester Leave Application System contains security vulnerabilities, which stem from improper handling of parameters and may lead to file inclusion attacks...

SourceCodester Leave Application System 代码注入漏洞

SourceCodester Leave Application System is an open-source vacation application system developed by SourceCodester. Version 1.0 of SourceCodester Leave Application System contains a code injection vulnerability. This vulnerability stems from unknown functional issues with the user management...

CVE-2026-2172

A vulnerability was determined in code-projects Online Application System for Admission 1.0. Affected by this vulnerability is an unknown functionality of the file enrollment/index.php of the component Login Endpoint. Executing a manipulation can lead to sql injection. The attack can be launched...

CVE-2026-2172

A vulnerability was determined in code-projects Online Application System for Admission 1.0. Affected by this vulnerability is an unknown functionality of the file enrollment/index.php of the component Login Endpoint. Executing a manipulation can lead to sql injection. The attack can be launched...

CVE-2026-2172

The CVE concerns code-projects Online Application System for Admission 1.0. The vulnerability is in the enrollment/index.php file of the Login Endpoint and is exploitable by manipulating input to cause SQL injection. It can be triggered remotely and the exploit has been publicly disclosed. Multip...

PT-2026-7004

Name of the Vulnerable Software and Affected Versions code-projects Online Application System for Admission version 1.0 Description A flaw exists in the Login Endpoint of the Online Application System for Admission. This issue, related to SQL injection, affects the enrollment/index.php file...

CVE-2025-15447

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: The vendor mentioned in the original disclosure filed a report that this issue affects a different vendor. The research...

PT-2026-1199

Name of the Vulnerable Software and Affected Versions Seeyon Zhiyuan OA Web Application System versions prior to 20251224 Description A flaw exists in Seeyon Zhiyuan OA Web Application System. The issue involves the manipulation of the unitCode argument within an unknown function of the file...

CVE-2025-15427

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: The vendor mentioned in the original disclosure filed a report that this issue affects a different...

CVE-2025-13060

A security vulnerability has been detected in SourceCodester Survey Application System 1.0. This affects an unknown function of the file /viewsurvey.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and m...

PT-2025-46707

Name of the Vulnerable Software and Affected Versions SourceCodester Survey Application System version 1.0 Description A security issue exists in SourceCodester Survey Application System 1.0. The issue involves potential SQL injection through manipulation of the ID argument in the /view survey.ph...

SourceCodester Survey Application System SQL注入漏洞

SourceCodester Survey Application System is a SourceCodester open source survey application system. A SQL injection vulnerability exists in SourceCodester Survey Application System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /viewsurvey.php, which can lead...

EUVD-2025-41749

A flaw has been found in SourceCodester Survey Application System 1.0. This impacts the function saveuser/updateuser of the file /LoginRegistration.php. Executing manipulation of the argument fullname can lead to sql injection. The attack may be performed from remote. The exploit has been publish...

CVE-2025-12929 SourceCodester Survey Application System LoginRegistration.php update_user sql injection

A flaw has been found in SourceCodester Survey Application System 1.0. This impacts the function saveuser/updateuser of the file /LoginRegistration.php. Executing manipulation of the argument fullname can lead to sql injection. The attack may be performed from remote. The exploit has been publish...