CVE-2025-11610

A security flaw has been discovered in SourceCodester Simple Inventory System 1.0. This issue affects some unknown processing of the file /brand.php. The manipulation of the argument editBrandName results in sql injection. The attack can be executed remotely. The exploit has been released to the...

CVE-2025-11610 SourceCodester Simple Inventory System brand.php sql injection

A security flaw has been discovered in SourceCodester Simple Inventory System 1.0. This issue affects some unknown processing of the file /brand.php. The manipulation of the argument editBrandName results in sql injection. The attack can be executed remotely. The exploit has been released to the...

PT-2025-41696

Name of the Vulnerable Software and Affected Versions SourceCodester Simple Inventory System version 1.0 Description A security flaw exists due to the manipulation of the editBrandName argument in the processing of the file '/brand.php', leading to a SQL injection. The attack can be executed...

CVE-2025-44181

Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting XSS in /admin/add-brand.php via the brandname parameter...

CVE-2024-10414 PHPGurukul Vehicle Record System edit-brand.php cross site scripting

A vulnerability, which was classified as problematic, was found in PHPGurukul Vehicle Record System 1.0. This affects an unknown part of the file /admin/edit-brand.php. The manipulation of the argument Brand Name leads to cross site scripting. It is possible to initiate the attack remotely. The...

Cross site scripting

A stored cross-site scripting XSS vulnerability in the component php-inventory-management-system/brand.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Brand Name parameter...

CVE-2022-4234 SourceCodester Canteen Management System brand.php builtin_echo cross site scripting

A vulnerability was found in SourceCodester Canteen Management System. It has been rated as problematic. This issue affects the function builtinecho of the file youthappam/brand.php. The manipulation of the argument brandname leads to cross site scripting. The attack may be initiated remotely. Th...

Garage Management System brand.php跨站脚本漏洞

Garage Management System is a garage management system that helps you manage all your vehicles, cars and motorcycles. A cross-site scripting vulnerability exists in Garage Management System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the brandname...

CVE-2022-36637

Garage Management System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via the brandname parameter at /brand.php...

Cross site scripting

Garage Management System v1.0 was discovered to contain a persistent cross-site scripting XSS vulnerability via the brandname parameter at /brand.php...

internationalleds.co.uk XSS vulnerability

Vulnerable URL: https://www.internationalleds.co.uk/brand.php?brand=megaman=143 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3155029 VIP website status:| No Check...

Cross site scripting

Cross-site scripting XSS vulnerability in templates/defaultheader.php in Lamp Design Storesprite before 7 - 19-06-14, when using the currency selection dropdown, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to brand.php, related to the currencyUrl function...

CVE-2014-3737

CVE-2014-3737 is a reflected XSS in Storesprite (Lamp Design Limited) via templates/defaultheader.php, exploitable when using the currency selection dropdown that triggers URI PATH_INFO to brand.php. Affects Storesprite v7 and likely earlier; vendor patch released on 2014-06-19 to fix the issue (...