CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2021/07/23 12:0 a.m.•12 views

SourceCodester Sales and Inventory System SQL Injection Vulnerability

Bakeshop Inventory System is a bakery inventory management system. sourceCodester Sales and Inventory System has a security vulnerability that can be exploited by remote attackers to execute arbitrary SQL statements via the id parameter to ahiraadmin Inventory . php...

9.8CVSS5.8AI score0.00513EPSS

CNVD•added 2021/07/23 12:0 a.m.•15 views

Sourcecodester Simple College Website SQL Injection Vulnerability

Sourcecodester Simple College Website is a Sourcecodester open source application. A content management system. SourceCodester Simple College Website v 1.0 is vulnerable to SQL injection, which can be exploited by remote attackers to execute arbitrary SQL statements against news.php via the id...

9.8CVSS5.3AI score0.00492EPSS

CNVD•added 2021/07/23 12:0 a.m.•27 views

CASAP Automated Enrollment SQL Injection Vulnerability (CNVD-2021-57785)

CASAP Automated Enrollment is an automated enrollment system for the CASAP organization. The goal of this project is to provide CASAP with an automated enrollment system to streamline the school's processes and make them more effective, efficient and easily retrievable. SourceCodester Alumni...

9.8CVSS3.2AI score0.00513EPSS

CNVD•added 2021/07/23 12:0 a.m.•24 views

SourceCodester Fantastic Blog CMS SQL Injection Vulnerability

SourceCodester Fantastic Blog CMS is an application. Absolutely brilliant web content management system for blogs/posts. SourceCodester Fantastic Blog CMS has a security vulnerability that can be exploited by attackers to execute arbitrary SQL statements via the id parameter to category.php...

9.8CVSS6.2AI score0.00617EPSS

NVD•added 2021/07/22 8:15 p.m.•12 views

CVE-2021-25205

SQL injection vulnerability in SourceCodester E-Commerce Website V 1.0 allows remote attackers to execute arbitrary SQL statements, via the update parameter to empViewUpdate.php...

9.8CVSS0.00492EPSS

Prion•added 2021/07/22 8:15 p.m.•8 views

Sql injection

SQL injection vulnerability in SourceCodester Theme Park Ticketing System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewuser.php...

7.5CVSS9.8AI score0.00444EPSS

Exploits0References1Affected Software1

Prion•added 2021/07/22 8:15 p.m.•13 views

Sql injection

SQL injection vulnerability in SourceCodester Travel Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the catid parameter to subcat.php...

Cvelist•added 2021/07/22 7:25 p.m.•12 views

CVE-2021-25205

SQL injection vulnerability in SourceCodester E-Commerce Website V 1.0 allows remote attackers to execute arbitrary SQL statements, via the update parameter to empViewUpdate.php...

10AI score0.00492EPSS

NVD•added 2021/07/22 7:15 p.m.•10 views

CVE-2021-25212

SQL injection vulnerability in SourceCodester Alumni Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to manageevent.php...

9.8CVSS0.00513EPSS

Prion•added 2021/07/22 7:15 p.m.•17 views

Sql injection

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewpay.php...

Prion•added 2021/07/22 7:15 p.m.•11 views

Sql injection

SQL injection vulnerability in SourceCodester Alumni Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to manageevent.php...

Cvelist•added 2021/07/22 7:8 p.m.•16 views

CVE-2021-25213

SQL injection vulnerability in SourceCodester Travel Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the catid parameter to subcat.php...

10AI score0.00513EPSS

Cvelist•added 2021/07/22 7:5 p.m.•9 views

CVE-2021-25209

SQL injection vulnerability in SourceCodester Theme Park Ticketing System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewuser.php...

10AI score0.00444EPSS

Exploits0References1

CVE•added 2021/07/22 7:5 p.m.•59 views

CVE-2021-25209

The CVE-2021-25209 entry corresponds to a SQL injection vulnerability in SourceCodester Theme Park Ticketing System v1.0. The flaw arises from insufficient validation of the id parameter in view_user.php, enabling remote attackers to execute arbitrary SQL statements. Affected software is the Them...

9.8CVSS9.8AI score0.00444EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/07/22 6:58 p.m.•9 views

CVE-2021-25212

SQL injection vulnerability in SourceCodester Alumni Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to manageevent.php...

10AI score0.00513EPSS

Cvelist•added 2021/07/22 6:34 p.m.•10 views

CVE-2021-26223

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewpay.php...

10AI score0.00513EPSS

NVD•added 2021/07/22 6:15 p.m.•9 views

CVE-2021-25202

SQL injection vulnerability in SourceCodester Sales and Inventory System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to \ahira\admin\inventory.php...

9.8CVSS0.00513EPSS

Prion•added 2021/07/22 6:15 p.m.•11 views

Sql injection

SQL injection vulnerability in SourceCodester Sales and Inventory System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to \ahira\admin\inventory.php...

Prion•added 2021/07/22 6:15 p.m.•12 views

Sql injection

SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edituser.php...