Lucene search
K

125 matches found

RedhatCVE
RedhatCVE
added 2026/04/01 5:0 a.m.6 views

CVE-2026-30520

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the saveloan action. The application fails to properly sanitize user input supplied to the "borrowerid" parameter in a POST request, allowing an...

4.8CVSS6AI score0.0022EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/31 6:31 p.m.6 views

EUVD-2026-17581

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the saveloan action. The application fails to properly sanitize user input supplied to the "borrowerid" parameter in a POST request, allowing an...

4.8CVSS6AI score0.0022EPSS
Exploits1References2
NVD
NVD
added 2026/03/31 6:16 p.m.3 views

CVE-2026-30520

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the saveloan action. The application fails to properly sanitize user input supplied to the "borrowerid" parameter in a POST request, allowing an...

5.4CVSS0.0022EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/31 12:0 a.m.3 views

CVE-2026-30520

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the saveloan action. The application fails to properly sanitize user input supplied to the "borrowerid" parameter in a POST request, allowing an...

6AI score0.0022EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/31 12:0 a.m.2 views

CVE-2026-30520

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the saveloan action. The application fails to properly sanitize user input supplied to the "borrowerid" parameter in a POST request, allowing an...

6AI score0.0022EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.6 views

SourceCodester Loan Management System 安全漏洞

The SourceCodester Loan Management System is an open-source loan management system developed by SourceCodester. Version 1.0 of the SourceCodester Loan Management System has a security vulnerability. This vulnerability stems from improper input cleaning of the borrowerid parameter in the file...

5.4CVSS5.8AI score0.0022EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.7 views

PT-2026-29324

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the save loan action. The application fails to properly sanitize user input supplied to the "borrower id" parameter in a POST request, allowing ...

6AI score0.0022EPSS
Exploits1References2
CVE
CVE
added 2026/03/31 12:0 a.m.12 views

CVE-2026-30520

SourceCodester Loan Management System v1.0 contains a Blind SQL Injection in ajax.php (save_loan action) where the borrower_id parameter in a POST request is not properly sanitized. An authenticated attacker could inject SQL commands via this input. The affected component is the web application’s...

5.4CVSS6AI score0.0022EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/11/03 12:30 a.m.6 views

EUVD-2025-37450

A vulnerability was determined in itsourcecode Online Loan Management System 1.0. This issue affects some unknown processing of the file /manageborrower.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...

7.5CVSS6.5AI score0.00374EPSS
Exploits1References6
OSV
OSV
added 2025/11/03 12:15 a.m.3 views

CVE-2025-12606

A vulnerability was determined in itsourcecode Online Loan Management System 1.0. This issue affects some unknown processing of the file /manageborrower.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...

9.8CVSS5.7AI score0.00374EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/11/03 12:0 a.m.5 views

itsourcecode Online Loan Management System SQL注入漏洞

itsourcecode Online Loan Management System is an open source online loan management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Loan Management System, which stems from incorrect manipulation of the parameter ID in the file...

9.8CVSS7.7AI score0.00374EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/02 11:32 p.m.4 views

CVE-2025-12606 itsourcecode Online Loan Management System manage_borrower.php sql injection

A vulnerability was determined in itsourcecode Online Loan Management System 1.0. This issue affects some unknown processing of the file /manageborrower.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...

7.5CVSS6.7AI score0.00374EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/02 12:0 a.m.7 views

PT-2025-44740

Name of the Vulnerable Software and Affected Versions itsourcecode Online Loan Management System version 1.0 Description A flaw exists in the processing of the /manage borrower.php file within itsourcecode Online Loan Management System. Manipulation of the ID argument can lead to a SQL injection...

9.8CVSS6.7AI score0.00374EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-26247

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28863

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-58677

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00611EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/08/31 9:32 p.m.6 views

CVE-2025-9678

A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=deleteborrower. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS7.4AI score0.00387EPSS
Exploits1References1
NVD
NVD
added 2025/08/29 10:15 p.m.6 views

CVE-2025-9678

A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=deleteborrower. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS0.00387EPSS
Exploits1References5
OSV
OSV
added 2025/08/29 10:15 p.m.5 views

CVE-2025-9678

A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=deleteborrower. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS5.8AI score0.00387EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/08/29 9:32 p.m.3 views

CVE-2025-9678 Campcodes Online Loan Management System ajax.php sql injection

A weakness has been identified in Campcodes Online Loan Management System 1.0. The impacted element is an unknown function of the file /ajax.php?action=deleteborrower. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

7.5CVSS6.9AI score0.00387EPSS
Exploits1References5
Rows per page
Query Builder