18 matches found
CVE-2025-11431 code-projects Web-Based Inventory and POS System transaction.php sql injection
A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. The impacted element is an unknown function of the file /transaction.php. This manipulation of the argument shopid causes sql injection. The attack is possible to be carried out remotely. The exploit has been...
CVE-2025-11424 code-projects Web-Based Inventory and POS System login.php sql injection
A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...
CVE-2025-11424 code-projects Web-Based Inventory and POS System login.php sql injection
A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...
PT-2025-41214
Name of the Vulnerable Software and Affected Versions code-projects Web-Based Inventory and POS System version 1.0 Description A flaw exists in code-projects Web-Based Inventory and POS System 1.0. The issue is related to the manipulation of the emailid argument in the /login.php file, which can...
EUVD-2025-18844
Malicious code in bioql PyPI...
CVE-2025-6901
The CVE-2025-6901 entry refers to code-projects Inventory Management System 1.0 with a SQL injection in the userid parameter of the /php_action/removeUser.php endpoint. The vulnerability is remote-exploitable and has publicly disclosed exploits. Connected sources consistently identify the affecte...
PT-2025-27415 · Code Projects · Code-Projects Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical issue has been discovered, allowing for SQL injection through the manipulation of the Username argument in an unknown function of the file /php action/createUser.ph...
Code-Projects Product Inventory System 注入漏洞
Code-Projects Product Inventory System is a Code-Projects open source product inventory system. Code-Projects Product Inventory System version 1.0 suffers from an injection vulnerability, which stems from an incorrect manipulation of the parameter Username in the file /index.php resulting in SQL...
CVE-2025-6823
CVE-2025-6823 affects code-projects Inventory Management System 1.0. The vulnerability arises from improper handling of the editProductName parameter in /php_action/editProduct.php, enabling SQL injection. Exploitation is described as remote and the exploit has been disclosed publicly. Connected ...
CVE-2025-6823 code-projects Inventory Management System editProduct.php sql injection
A vulnerability was found in code-projects Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /phpaction/editProduct.php. The manipulation of the argument editProductName leads to sql injection. The attack may be initiated...
PT-2025-27322 · Unknown · Code-Projects Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical issue has been found, affecting an unknown part of the file /php action/createOrder.php, leading to sql injection. The manipulation can be initiated remotely...
PT-2025-27334 · Code Projects · Code-Projects Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical vulnerability was found in the code-projects Inventory Management System. This issue affects unknown code of the file /php action/editPayment.php. The manipulation ...
PT-2025-27329 · Unknown · Code-Projects Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical vulnerability was found in the code-projects Inventory Management System. This affects an unknown part of the file /php action/editOrder.php. The manipulation leads...
CVE-2025-6665 code-projects Inventory Management System editBrand.php sql injection
A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /phpaction/editBrand.php. The manipulation of the argument editBrandStatus leads to sql injection. The attack can be...
PT-2025-26843 · Code Projects · Code-Projects Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical issue has been identified, affecting the file /php action/createBrand.php. The manipulation of the brandStatus argument leads to SQL injection. This issue can be...
CVE-2025-6501
Code-projects Inventory Management System 1.0 has a SQL injection in the /php_action/createCategories.php endpoint, triggered by the categoriesStatus parameter. The issue is remotely exploitable and the exploit has been publicly disclosed. Publicly accessible documents describe the vulnerability ...
PT-2025-26579 · Unknown · Code-Projects Inventory Management System
Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical vulnerability was found in the code-projects Inventory Management System. This affects an unknown part of the file /php action/createCategories.php. The manipulatio...
CVE-2024-8605 code-projects Inventory Management Registration Form registration.php cross site scripting
A vulnerability classified as problematic was found in code-projects Inventory Management 1.0. This vulnerability affects unknown code of the file /view/registration.php of the component Registration Form. The manipulation with the input alert1 leads to cross site scripting. The attack can be...