3502 matches found
CVE-2025-12252
Summary: Multiple sources confirm a SQL injection in Code-Projects Online Event Judging System 1.0, arising from /ajax/action.php via manipulation of the content parameter. This is an externally exploitable, remote flaw with public exploit presence. Concrete details across CNVD-2025-26165, RH-CVE...
CVE-2025-12252 code-projects Online Event Judging System action.php sql injection
A vulnerability was found in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /ajax/action.php. The manipulation of the argument content results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...
CVE-2025-12244 code-projects Simple E-Banking System register.php cross site scripting
A vulnerability was determined in code-projects Simple E-Banking System 1.0. This affects an unknown part of the file /eBank/register.php. Executing manipulation of the argument Username can lead to cross site scripting. The attack may be launched remotely. The exploit has been publicly disclosed...
CVE-2025-12244
The CVE-2025-12244 entry affects Code-Projects Simple E-Banking System 1.0. The vulnerable component is the file /eBank/register.php, where manipulation of the Username argument can trigger cross-site scripting. The issue is exploitable remotely and an exploit has been publicly disclosed. While m...
CVE-2025-12243 code-projects Client Details System GET Parameter welcome.php sql injection
A vulnerability was found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the file clientdetails/welcome.php of the component GET Parameter Handler. Performing manipulation of the argument ID results in sql injection. The attack may be initiated...
CVE-2025-12243
CVE-2025-12243 affects code-projects Client Details System 1.0. The vulnerability is in the GET Parameter Handler, specifically the file clientdetails/welcome.php; manipulating the ID parameter can cause SQL injection. The issue is exploitable remotely, and exploits have been published. Multiple ...
CVE-2025-12243 code-projects Client Details System GET Parameter welcome.php sql injection
A vulnerability was found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the file clientdetails/welcome.php of the component GET Parameter Handler. Performing manipulation of the argument ID results in sql injection. The attack may be initiated...
CVE-2025-12238 code-projects Automated Voting System user.php sql injection
A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected element is an unknown function of the file /admin/user.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has...
EUVD-2025-36099
A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected element is an unknown function of the file /admin/user.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has...
CVE-2025-12238 code-projects Automated Voting System user.php sql injection
A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected element is an unknown function of the file /admin/user.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has...
CVE-2025-12238
CVE-2025-12238 affects code-projects Automated Voting System 1.0, specifically the /admin/user.php file where manipulation of the Username parameter enables SQL injection. Multiple connected sources confirm remote exploitation potential and public release of the exploit. CNA/VulDB data indicate a...
PT-2025-43929
Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A flaw exists in code-projects Online Event Judging System 1.0 that allows for SQL injection. The issue is located in the /edit criteria.php file, specifically through...
PT-2025-43899
Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in the GET Parameter Handler component of the software, specifically within the clientdetails/welcome.php file. Manipulation of the ID parameter can lead to a SQL...
PT-2025-43914
Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A security flaw exists in code-projects Online Event Judging System 1.0. Manipulation of the fullname argument in the /add contestant.php file can lead to SQL injection. Remote...
PT-2025-44065
Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A cross site scripting issue exists in code-projects E-Commerce Website version 1.0. The issue is related to the manipulation of the supp name/supp address argument within the file...
PT-2025-43930
Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A flaw exists in code-projects Online Event Judging System 1.0 that allows for remote SQL injection. The issue is located in the file /edit judge.php within an unknown function...
PT-2025-43947
Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A flaw exists in code-projects Client Details System 1.0 that allows for cross site scripting. The issue affects unknown code within the /welcome.php file and can be exploited remotel...
Code-Projects Online Event Judging System SQL注入漏洞
Online Event Judging System is an online event judging system. Online Event Judging System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter contestantid in the file /editcontestant.php. An attacker can...
PT-2025-44061
Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A flaw exists in code-projects E-Commerce Website 1.0 that allows for cross site scripting. The issue is located in the /pages/product add.php file. Manipulation of the prod name, prod...
PT-2025-43954
Name of the Vulnerable Software and Affected Versions code-projects Client Details System version 1.0 Description A security issue exists in code-projects Client Details System 1.0. The issue involves cross site scripting, potentially allowing remote attackers to compromise the system. The affect...