3502 matches found
CVE-2026-2166
Summary: CVE-2026-2166 affects code-projects Online Reviewer System 1.0, specifically the Login component’s file /login/index.php. The vulnerability arises from manipulation of the username/password arguments, leading to an SQL injection. It can be exploited remotely and the exploit has been publ...
CVE-2026-2158
A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /checkuser.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely...
CVE-2026-2158 code-projects Student Web Portal check_user.php sql injection
A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /checkuser.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely...
EUVD-2026-5791
A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /checkuser.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely...
CVE-2026-2158 code-projects Student Web Portal check_user.php sql injection
A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /checkuser.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely...
CVE-2026-2158
CVE-2026-2158 affects code-projects Student Web Portal 1.0. The vulnerability is in an unknown function within the file /check_user.php where manipulation of the Username argument enables remote SQL injection. This has been consistently described across multiple sources (NVD, Red Hat, CNNVD, etc....
CVE-2026-2156 code-projects Online Student Management System Announcement Management index.php cross site scripting
A weakness has been identified in code-projects Online Student Management System 1.0. The impacted element is an unknown function of the file /admin/announcement/index.php?view=add of the component Announcement Management Module. This manipulation causes cross site scripting. The attack is possib...
CVE-2026-2156 code-projects Online Student Management System Announcement Management index.php cross site scripting
A weakness has been identified in code-projects Online Student Management System 1.0. The impacted element is an unknown function of the file /admin/announcement/index.php?view=add of the component Announcement Management Module. This manipulation causes cross site scripting. The attack is possib...
CVE-2026-2156
CVE-2026-2156 affects code-projects’ Online Student Management System version 1.0, specifically the Announcement Management Module . The vulnerability exists in an unknown function within the file /admin/announcement/index.php?view=add, enabling remote cross-site scripting through manipulation of...
CVE-2026-2083
A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /deletepost.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...
CVE-2026-2133 code-projects Online Music Site AdminUpdateCategory.php unrestricted upload
A weakness has been identified in code-projects Online Music Site 1.0. Impacted is an unknown function of the file /Administrator/PHP/AdminUpdateCategory.php. This manipulation of the argument txtimage causes unrestricted upload. The attack is possible to be carried out remotely. The exploit has...
CVE-2026-2133
CVE-2026-2133 affects code-projects Online Music Site 1.0. The vulnerability exists in an unknown function of /Administrator/PHP/AdminUpdateCategory.php, where manipulating the txtimage argument enables unrestricted file uploads. It is exploitable remotely, and public exploit details have been re...
CVE-2026-2133 code-projects Online Music Site AdminUpdateCategory.php unrestricted upload
A weakness has been identified in code-projects Online Music Site 1.0. Impacted is an unknown function of the file /Administrator/PHP/AdminUpdateCategory.php. This manipulation of the argument txtimage causes unrestricted upload. The attack is possible to be carried out remotely. The exploit has...
CVE-2026-2132 code-projects Online Music Site AdminUpdateCategory.php sql injection
A security flaw has been discovered in code-projects Online Music Site 1.0. This issue affects some unknown processing of the file /Administrator/PHP/AdminUpdateCategory.php. The manipulation of the argument txtcat results in sql injection. The attack can be executed remotely. The exploit has bee...
CVE-2026-2132
code-projects Online Music Site 1.0 contains a SQL injection in AdminUpdateCategory.php (txtcat) that can be triggered remotely. Multiple sources (NVD/Red Hat/CVE list) confirm the vulnerability path involves the /Administrator/PHP/AdminUpdateCategory.php file and an injectable txtcat parameter. ...
Code-Projects Online Music Site SQL注入漏洞
Code-Projects Online Music Site is an online music website developed by Code-Projects as open source. Version 1.0 of Code-Projects Online Music Site has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the txtcat parameter in...
Code-Projects Online Student Management System SQL注入漏洞
Code-Projects Online Student Management System is an open-source online student management system developed by Code-Projects. Version 1.0 of the Code-Projects Online Student Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of parameters userna...
Code-Projects Online Application System for Admission SQL注入漏洞
Code-Projects Online Application System for Admission is an online application system developed by Code-Projects. Version 1.0 of the Code-Projects Online Application System for Admission contains a SQL injection vulnerability. This vulnerability stems from incorrect operations with the...
Code-Projects Online Examination System SQL注入漏洞
The Code-Projects Online Examination System is an open-source online examination system developed by Code-Projects. Version 1.0 of the Code-Projects Online Examination System has a SQL injection vulnerability. This vulnerability stems from incorrect handling of parameters username and password in...
Code-Projects Contact Management System 授权问题漏洞
Code-Projects Contact Management System is an open-source contact management system developed by Code-Projects. Version 1.0 of the Code-Projects Contact Management System has a vulnerability related to authorization issues. This vulnerability stems from incorrect handling of parameter IDs, which...