CVE-2025-5971 code-projects School Fees Payment System ajx.php sql injection

A vulnerability was found in code-projects School Fees Payment System 1.0. It has been classified as critical. This affects an unknown part of the file /ajx.php. The manipulation of the argument namestartsWith leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

PT-2025-25164 · Unknown · Code-Projects School Fees Payment System

Name of the Vulnerable Software and Affected Versions: code-projects School Fees Payment System version 1.0 Description: A critical issue was found, affecting an unknown functionality, which leads to improper authentication. The attack can be launched remotely. The exploit has been disclosed to t...

PT-2025-24936 · Unknown · Code-Projects Restaurant Order System

Name of the Vulnerable Software and Affected Versions: code-projects Restaurant Order System version 1.0 Description: A critical vulnerability was found in the code-projects Restaurant Order System. This issue affects unknown code of the file /order.php. The manipulation of the tabidNoti argument...

CVE-2024-24095

Code-projects Simple Stock System 1.0 is vulnerable to SQL Injection...

Code-Projects Employee Record System 代码注入漏洞

Code-Projects Employee Record System is a Code-Projects open source employee record system. Code-Projects Employee Record System version 1.0 has a code injection vulnerability , the vulnerability stems from the currentemployees.php file currentemployeeid/firstname/middlename/lastname parameters a...

Code-Projects Online Exam Mastering System 安全漏洞

Code-Projects Online Exam Mastering System is a Code-Projects open source online exam system. A security vulnerability exists in Code-Projects Online Exam Mastering System version 1.0, which originates from cross-site scripting in the q parameter of feedback.php and could lead to the execution of...

Code-Projects Online Class and Exam Scheduling System 安全漏洞

Code-Projects Online Class and Exam Scheduling System is an online class and exam scheduling system from Code-Projects open source. A security vulnerability exists in Code-Projects Online Class and Exam Scheduling System version V1.0, which stems from incorrect manipulation of the parameters id,...

CVE-2025-29429

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting XSS in /pages/program.php via the id, code, and name parameters...

CVE-2025-29430

CVE-2025-29430 affects Code-projects Online Class and Exam Scheduling System V1.0. The vulnerability is a Cross Site Scripting (XSS) in the /pages/room.php endpoint, exploitable via the id and rome parameters. Root cause per the sources is insufficient input filtering/escaping of user-supplied da...

PT-2025-6904 · Unknown · Code-Projects Real Estate Property Management System

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical issue has been found in the system, affecting an unknown part of the file /search.php. The manipulation of the StateName, CityName, AreaName, or CatId...

PT-2025-6842 · Unknown · Code-Projects Real Estate Property Management System

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical vulnerability has been found in the code-projects Real Estate Property Management System. The issue affects an unknown functionality of the file /...

PT-2025-3456 · Unknown · Code-Projects Online Car Rental System

Name of the Vulnerable Software and Affected Versions: Code-Projects Online Car Rental System version 1.0 Description: The file upload feature in the affected system does not validate file extensions or MIME types, allowing an attacker to upload a PHP shell without restrictions and execute comman...

PT-2025-3776 · Code Projects · Code-Projects Student Management System

Name of the Vulnerable Software and Affected Versions: code-projects Student Management System version 1.0 Description: A critical issue has been found in the showSubject1 function of the file /config/DbFunction.php. The manipulation of the sid argument leads to SQL injection. The attack can be...

Code-Projects Point of Sales and Inventory Management System 注入漏洞

Code-Projects Point of Sales and Inventory Management System is an open source point of sale and inventory management system from Code-Projects. An injection vulnerability exists in Code-Projects Point of Sales and Inventory Management System version 1.0, which originates from an SQL injection...

PT-2024-16496 · Unknown · Code-Projects Restaurant Order System

Name of the Vulnerable Software and Affected Versions: code-projects Restaurant Order System version 1.0 Description: A critical issue was found in the code-projects Restaurant Order System, affecting some unknown functionality of the file /login.php. The manipulation of the uid argument leads to...

PT-2024-39857 · Unknown · Code-Projects Crud Operation System

Name of the Vulnerable Software and Affected Versions: code-projects Crud Operation System version 1.0 Description: A critical vulnerability was found in the code-projects Crud Operation System. This issue affects the file delete.php and is related to the manipulation of the sid argument, leading...

PT-2024-39414 · Unknown · Code-Projects Student Record System

Name of the Vulnerable Software and Affected Versions: code-projects Student Record System version 1.0 Description: A critical issue was found in the code-projects Student Record System. The problem is with an unknown function of the file /pincode-verification.php. The manipulation of the pincode...

Code-Projects Crud Operation System SQL注入漏洞

Code-Projects Crud Operation System is a Code-Projects open source application. A SQL injection vulnerability exists in Code-Projects Crud Operation System version 1.0, which originates from a SQL injection vulnerability contained in the sid parameter of the updata.php file...

CVE-2024-31610

File Upload vulnerability in the function for employees to upload avatars in Code-Projects Simple School Management System v1.0 allows attackers to run arbitrary code via upload of crafted file...

PT-2024-15582 · Code Projects · Code-Projects Employee Profile Management System

Name of the Vulnerable Software and Affected Versions: code-projects Employee Profile Management System version 1.0 Description: A problematic vulnerability was found in the code-projects Employee Profile Management System. This issue affects the file download.php, where the manipulation of the...