4 matches found
CVE-2025-6819
A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /phpaction/removeBrand.php. The manipulation of the argument brandId leads to sql injection. The attack can be launche...
CVE-2025-6668
A vulnerability was found in code-projects Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /phpaction/fetchSelectedBrand.php. The manipulation of the argument brandId leads to sql injection. It is possible to initiate the attack...
CVE-2025-44180
Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting XSS in /edit-brand.php?bid=brandId...
Ecommerce-Website SQL Injection Vulnerability
Ecommerce-Website is a complete e-commerce website with an administration panel built using PHP and MySql. A SQL injection vulnerability exists in Ecommerce-Website version 1.0, which stems from the parameter catid/brandid/keyword in the file action.php that can lead to SQL injection...