3533 matches found
Code-Projects School Fees Payment System 1.0 - SQL Injection
A vulnerability was found in code-projects School Fees Payment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2026-14769
The CVE-2026-14769 entry concerns code-projects Real State Services 1.0. A vulnerability in processing the file /pay.php allows manipulation of the Bankname parameter that leads to a SQL injection. The issue appears to be exploitable remotely and public exploit details are available. Metrics indi...
CVE-2026-14762
Technical details about CVE-2026-14762 are not publicly available in the provided documents. Monitor for updates on affected product versions, affected component, and remediation.
CVE-2026-14755
The CVE concerns code-projects Hotel and Tourism Reservation 1.0. The vulnerability exists in the Reservations Management Page (/admin/reservations.php), where manipulating the delete parameter causes SQL injection. Likely exploitable remotely with no authentication required, as indicated by CVSS...
CVE-2026-14747
The CVE-2026-14747 entry concerns code-projects Real State Services 1.0. The vulnerability targets an unspecified functionality of /addprojectsale.php, where manipulation of the amen parameter leads to an SQL injection. It is described as exploitable remotely and classified with a CVSS impact pro...
CVE-2026-14747 code-projects Real State Services addprojectsale.php sql injection
A vulnerability was detected in code-projects Real State Services 1.0. Affected by this vulnerability is an unknown functionality of the file /addprojectsale.php. The manipulation of the argument amen results in sql injection. The attack can be launched remotely...
CVE-2026-14746 code-projects Real State Services addprojectrent.php sql injection
A security vulnerability has been detected in code-projects Real State Services 1.0. Affected is an unknown function of the file /addprojectrent.php. The manipulation of the argument amen leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may...
CVE-2026-14745
Affected product: code-projects Real State Services 1.0. The vulnerability resides in the function handling the parameter in the file /single-list_rent.php, where manipulation of the ID argument leads to SQL injection. This can be exploited remotely; the exploit has been made publicly available. ...
CVE-2026-14744
CVE-2026-14744 affects code-projects Real State Services 1.0. The vulnerability exists in an unknown function of /normalHomeRent.php where manipulating the loc argument allows SQL injection. Exploitation is possible remotely, and public exploits have been released. No remediation details are prov...
CVE-2026-14743
CVE-2026-14743 affects the code-projects Real State Services 1.0. The vulnerability is a SQL injection in an unknown function of the file /normalHomeSale.php triggered by manipulating the loc argument. Exploitation can be performed remotely, and public exploit code is available. The provided docu...
CVE-2026-14705
A vulnerability was determined in code-projects Online Examination 1.0. Affected by this issue is some unknown functionality of the file head.php. Executing a manipulation of the argument uname/password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-14706 code-projects Online Examination Quiz Creation Feature update.php sql injection
A vulnerability was identified in code-projects Online Examination 1.0. This affects an unknown part of the file /update.php?q=addquiz of the component Quiz Creation Feature. The manipulation of the argument name/total/right/wrong/time/tag/desc leads to sql injection. The attack can be initiated...
CVE-2026-14705
The CVE-2026-14705 entry affects code-projects Online Examination 1.0, specifically the head.php functionality. The issue arises from manipulating the uname/password arguments, enabling a SQL injection. It can be exploited remotely, and public exploit details exist. No remediation or affected ver...
CVE-2026-14705 code-projects Online Examination head.php sql injection
A vulnerability was determined in code-projects Online Examination 1.0. Affected by this issue is some unknown functionality of the file head.php. Executing a manipulation of the argument uname/password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-14701
CVE-2026-14701 affects code-projects Internship Management System 1.0. The vulnerability is in the Password Change Endpoint (employer/details/change_password.php) where manipulating the Current argument leads to SQL injection. The issue is exploitable remotely and the exploit is publicly availabl...
CVE-2026-14700 code-projects Internship Management System Employer Login Endpoint login.php sql injection
A security vulnerability has been detected in code-projects Internship Management System 1.0. The impacted element is an unknown function of the file employer/login.php of the component Employer Login Endpoint. The manipulation of the argument email/password leads to sql injection. Remote...
CVE-2026-14660
The CVE-2026-14660 entry concerns code-projects Online Job Portal 1.0. The vulnerability lies in login.php where manipulating the arguments txtUser/txtPass causes SQL injection. Attack could be performed remotely and an exploit has been publicly released. Affected component: login handling in Onl...
CVE-2026-14658
The CVE-2026-14658 issue affects code-projects Assessment Management 1.0, specifically the file /lecturer/marking-scheme.php. The vulnerability is an SQL injection caused by manipulating the parameter smarksrange[]; it enables remote exploitation. Public exploit information is noted in the descri...
CVE-2026-14658 code-projects Assessment Management marking-scheme.php sql injection
A vulnerability was detected in code-projects Assessment Management 1.0. This vulnerability affects unknown code of the file /lecturer/marking-scheme.php. The manipulation of the argument smarksrange results in sql injection. It is possible to launch the attack remotely. The exploit is now public...
CVE-2026-14657
CVE-2026-14657 describes a SQL injection flaw in the code-projects Assessment Management 1.0, affecting the Database Query Handler. The vulnerability arises from how the argument squestions[] is processed in the file /lecturer/marking-scheme.php, enabling remote exploitation. The exploit is publi...