3497 matches found
CVE-2025-14251
A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...
CVE-2025-14285 code-projects Employee Profile Management System edit_personnel.php sql injection
A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file editpersonnel.php. The manipulation of the argument perid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be use...
CVE-2025-14285
Code-projects Employee Profile Management System 1.0 is affected by a SQL injection in edit_personnel.php via the per_id parameter. The flaw enables remote exploitation and has publicly available exploits; multiple sources corroborate the issue. There is no product-specific patch details in the p...
Code-Projects Employee Profile Management System 安全漏洞
Employee Profile Management System is an employee profile management system. The Employee Profile Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter perid in the file editpersonnel.php. An...
CVE-2025-14203
A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and m...
EUVD-2025-201724
A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...
CVE-2025-14250
A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...
CVE-2025-14251
A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...
CVE-2025-14251 code-projects Online Ordering System Admin Login admin sql injection
A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...
CVE-2025-14251
The CVE-2025-14251 entry concerns code-projects Online Ordering System v1.0. A SQL injection vulnerability exists in the Admin Login module, specifically via manipulation of the Username argument in the /admin/ path. The issue is exploitable remotely and is associated with the Admin Login compone...
CVE-2025-14251 code-projects Online Ordering System Admin Login admin sql injection
A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...
CVE-2025-14250
The CVE-2025-14250 entry corresponds to code-projects Online Ordering System 1.0 where the vulnerability originates in the /user_contact.php file, in the Name parameter. Multiple connected sources (CNVD-2026-00521, RH/CVE-2025-14250, CNNVD-202512-957, EUVD-2025-201729, NVD, CVELIST) describe a SQ...
CVE-2025-14250 code-projects Online Ordering System user_contact.php sql injection
A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...
CVE-2025-14250 code-projects Online Ordering System user_contact.php sql injection
A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...
CVE-2025-14249
A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /userschool.php. The manipulation of the argument productid results in sql injection. The attack may be performed from remote. The exploit has been released to...
CVE-2025-14249
CVE-2025-14249 corresponds to code-projects Online Ordering System 1.0 and is tied to a SQL injection in the parameter product_id in /user_school.php. The vulnerability arises from lack of input validation, enabling remote exploitation that may disclose or alter database data. Multiple connected ...
CVE-2025-14249 code-projects Online Ordering System user_school.php sql injection
A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /userschool.php. The manipulation of the argument productid results in sql injection. The attack may be performed from remote. The exploit has been released to...
CVE-2025-14249 code-projects Online Ordering System user_school.php sql injection
A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /userschool.php. The manipulation of the argument productid results in sql injection. The attack may be performed from remote. The exploit has been released to...
CVE-2025-14248
CVE-2025-14248 affects code-projects Simple Shopping Cart 1.0. The vulnerability is a SQL injection in adminlogin.php triggered by manipulating the admin_username parameter. The risk is remote and the exploit is publicly available. Multiple sources corroborate the issue and describe it as origina...
CVE-2025-14248 code-projects Simple Shopping Cart adminlogin.php sql injection
A vulnerability was identified in code-projects Simple Shopping Cart 1.0. Impacted is an unknown function of the file /adminlogin.php. The manipulation of the argument adminusername leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and...