3490 matches found
CVE-2026-4319 code-projects Simple Food Order System add-item.php sql injection
A vulnerability was identified in code-projects Simple Food Order System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/add-item.php. Such manipulation of the argument price leads to sql injection. The attack can be launched remotely. The exploit is publicly...
CVE-2026-4319
CVE-2026-4319 affects code-projects Simple Food Order System 1.0. The vulnerability targets an unknown functionality in /routers/add-item.php where manipulating the price argument enables SQL injection. Exploitation can be performed remotely, and public exploits exist. The available data does not...
CVE-2026-3763 code-projects Simple Flight Ticket Booking System showhistory.php cross site scripting
A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. The affected element is an unknown function of the file showhistory.php. The manipulation results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could b...
CVE-2026-3745 code-projects Student Web Portal profile.php sql injection
A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...
CVE-2026-3745
CVE-2026-3745 affects code-projects’ Student Web Portal 1.0. An unknown function in profile.php allows manipulation of the User argument, resulting in an SQL injection. The vulnerability is remotely exploitable and, per the sources, the exploit has been publicly disclosed. Affected impact is desc...
CVE-2026-3745 code-projects Student Web Portal profile.php sql injection
A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...
CVE-2026-3745
A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...
CVE-2026-3744
A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...
CVE-2026-3744 code-projects Student Web Portal signup.php valreg_passwdation sql injection
A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...
CVE-2026-3744 code-projects Student Web Portal signup.php valreg_passwdation sql injection
A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valregpasswdation of the file signup.php. The manipulation of the argument regpasswd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...
CVE-2026-3744
CVE-2026-3744 affects code-projects Student Web Portal 1.0. The vulnerability is in the function valreg_passwdation of signup.php, where the reg_passwd argument can be manipulated to trigger a SQL injection. It is a remote, publicly disclosed exploit (PoC present in multiple sources). The issue i...
CVE-2026-3736 code-projects Simple Flight Ticket Booking System SearchResultRoundtrip.php sql injection
A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. Affected by this issue is some unknown functionality of the file SearchResultRoundtrip.php. Performing a manipulation of the argument from results in sql injection. The attack may be initiated remotely. The exploi...
CVE-2026-3736 code-projects Simple Flight Ticket Booking System SearchResultRoundtrip.php sql injection
A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. Affected by this issue is some unknown functionality of the file SearchResultRoundtrip.php. Performing a manipulation of the argument from results in sql injection. The attack may be initiated remotely. The exploi...
CVE-2026-3735
A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file SearchResultOneway.php. Such manipulation of the argument from leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2026-3723 code-projects Simple Flight Ticket Booking System Admindelete.php sql injection
A security flaw has been discovered in code-projects Simple Flight Ticket Booking System 1.0. This affects an unknown function of the file /Admindelete.php. The manipulation of the argument flightno results in sql injection. The attack may be performed from remote. The exploit has been released t...
CVE-2026-3723
CVE-2026-3723 affects code-projects Simple Flight Ticket Booking System 1.0. The vulnerability is an SQL injection in Admindelete.php triggered by manipulating the flightno parameter, exploitable remotely and reportedly with a publicly released exploit. Remediation guidance across sources include...
CVE-2026-3711 code-projects Simple Flight Ticket Booking System Adminupdate.php sql injection
A vulnerability was detected in code-projects Simple Flight Ticket Booking System 1.0. Affected is an unknown function of the file /Adminupdate.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp results in sql injection. The attack can be executed...
CVE-2026-3711 code-projects Simple Flight Ticket Booking System Adminupdate.php sql injection
A vulnerability was detected in code-projects Simple Flight Ticket Booking System 1.0. Affected is an unknown function of the file /Adminupdate.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp results in sql injection. The attack can be executed...
CVE-2026-3709 code-projects Simple Flight Ticket Booking System register.php sql injection
A weakness has been identified in code-projects Simple Flight Ticket Booking System 1.0. This affects an unknown function of the file /register.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made availabl...
CVE-2026-3709
CVE-2026-3709 affects the code-projects Simple Flight Ticket Booking System 1.0. The vulnerability is in the file register.php , where manipulating the Username argument leads to a SQL injection . It is remotely exploitable and the exploit has been publicly released. Connected sources corroborate...