3502 matches found
PT-2025-38710
Name of the Vulnerable Software and Affected Versions code-projects Online Bidding System version 1.0 Description A flaw exists in code-projects Online Bidding System 1.0 within the file /administrator/bidupdate.php. Manipulation of the ID argument can lead to SQL injection. This issue is remotel...
PT-2025-38706
Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A flaw exists in code-projects E-Commerce Website 1.0 where manipulation of the user id argument in the file '/pages/admin account delete.php' can lead to SQL injection. This issue is...
CVE-2025-56289
code-projects Document Management System 1.0 has a Cross Site Scripting XSS vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files...
CVE-2025-56295
code-projects Computer Laboratory System 1.0 has a file upload vulnerability. Staff can upload malicious files by uploading PHP backdoor files when modifying personal avatar information and use web shell connection tools to obtain server permissions...
CVE-2025-56293
code-projects Human Resource Integrated System 1.0 is vulnerable to Cross Site Scripting XSS in the Add Child Information section in the Childs Name field...
CVE-2025-56289
code-projects Document Management System 1.0 has a Cross Site Scripting XSS vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files...
CVE-2025-56289
code-projects Document Management System 1.0 has a Cross Site Scripting XSS vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files...
Code-Projects Food Ordering Review System 安全漏洞
Code-Projects Food Ordering Review System is an open source food ordering review system from Code-Projects. A security vulnerability exists in Code-Projects Food Ordering Review System version 1.0, which stems from a failure to validate user name input in the registration function, which could le...
Code-Projects Document Management System 安全漏洞
Code-Projects Document Management System is an open source document management system from Code-Projects. A security vulnerability exists in Code-Projects Document Management System version 1.0, which stems from a failure to filter malicious cross-site scripting code in the Company field when...
Code-Projects Food Ordering Review System 安全漏洞
Code-Projects Food Ordering Review System is an open source food ordering review system from Code-Projects. A security vulnerability exists in Code-Projects Food Ordering Review System version 1.0, which stems from incorrect handling of input in the user-submitted ordering information area and...
CVE-2025-10104
A security vulnerability has been detected in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /reviewsearch.php. The manipulation of the argument txtsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-10102
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has been release...
CVE-2025-10104
The CVE-2025-10104 entry concerns code-projects Online Event Judging System 1.0. Affected is the /review_search.php component where the txtsearch parameter can be manipulated to perform SQL injection. The vulnerability enables remote exploitation, and multiple sources note that the exploit has be...
CVE-2025-10104 code-projects Online Event Judging System review_search.php sql injection
A security vulnerability has been detected in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /reviewsearch.php. The manipulation of the argument txtsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-10104 code-projects Online Event Judging System review_search.php sql injection
A security vulnerability has been detected in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /reviewsearch.php. The manipulation of the argument txtsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-10102
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has been release...
CVE-2025-10103
CVE-2025-10103 affects code-projects Online Event Judging System 1.0. The vulnerability is a SQL injection in the /home.php file caused by manipulation of the main_event argument, potentially exploitable remotely. Multiple connected sources confirm this issue and note that the exploit has been pu...
CVE-2025-10102 code-projects Online Event Judging System index.php sql injection
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has been release...
CVE-2025-10102 code-projects Online Event Judging System index.php sql injection
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The exploit has been release...
CVE-2025-10102
The CVE-2025-10102 entry concerns code-projects Online Event Judging System 1.0. The vulnerability is a SQL injection in the /index.php file caused by manipulating the Username parameter; it is exploitable remotely and the exploit has been publicly released. Multiple connected sources corroborate...