Lucene search
K

9 matches found

Cvelist
Cvelist
added 2026/04/27 11:15 a.m.32 views

CVE-2026-7118 code-projects Employee Management System cancel.php sql injection

A security vulnerability has been detected in code-projects Employee Management System 1.0. The affected element is an unknown function of the file 370project/cancel.php. The manipulation of the argument id/token leads to sql injection. The attack is possible to be carried out remotely. The explo...

6.5CVSS0.00192EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/02 12:19 a.m.6 views

CVE-2025-63532

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

9.6CVSS8.4AI score0.00352EPSS
Exploits0References1
OSV
OSV
added 2025/12/01 4:15 p.m.2 views

CVE-2025-63532

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

8.8CVSS5.9AI score0.00352EPSS
Exploits0References3
NVD
NVD
added 2025/12/01 4:15 p.m.4 views

CVE-2025-63532

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

9.6CVSS0.00352EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/01 12:0 a.m.2 views

EUVD-2025-199994

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel.php component. The application fails to properly sanitize user-supplied input in SQL queries, allowing an attacker to inject arbitrary SQL code. By manipulating the search field, an attacker can bypass...

9.6CVSS7.8AI score0.00352EPSS
Exploits0References4
CVE
CVE
added 2025/12/01 12:0 a.m.11 views

CVE-2025-63532

Summary: CVE-2025-63532 affects the Blood Bank Management System 1.0, specifically the cancel.php component. The vulnerability is a SQL injection caused by insufficient sanitization of user input in SQL queries, enabling an attacker to manipulate the search field to bypass authentication and gain...

9.6CVSS8AI score0.00352EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/10/27 1:15 p.m.3 views

CVE-2024-10416

A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of the argument reqid leads to sql injection. The attack may be initiated remotely. The exploit has bee...

8.8CVSS5.8AI score0.00518EPSS
Exploits1References5
OSV
OSV
added 2024/02/26 4:27 p.m.3 views

CVE-2024-1877

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /cancel.php. The manipulation of the argument id with the input 1%20or%201=1 leads to sql injection. The attack can ...

8.8CVSS5.7AI score0.00628EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/11/13 12:0 a.m.5 views

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system from the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0, which stems from a SQL injection vulnerability in the parameter reqid of the file cancel.php...

5.5CVSS7.9AI score0.00349EPSS
Exploits2References2
Rows per page
Query Builder