CVE-2026-2133 code-projects Online Music Site AdminUpdateCategory.php unrestricted upload

A weakness has been identified in code-projects Online Music Site 1.0. Impacted is an unknown function of the file /Administrator/PHP/AdminUpdateCategory.php. This manipulation of the argument txtimage causes unrestricted upload. The attack is possible to be carried out remotely. The exploit has...

CVE-2026-2132

code-projects Online Music Site 1.0 contains a SQL injection in AdminUpdateCategory.php (txtcat) that can be triggered remotely. Multiple sources (NVD/Red Hat/CVE list) confirm the vulnerability path involves the /Administrator/PHP/AdminUpdateCategory.php file and an injectable txtcat parameter. ...

CVE-2026-2132 code-projects Online Music Site AdminUpdateCategory.php sql injection

A security flaw has been discovered in code-projects Online Music Site 1.0. This issue affects some unknown processing of the file /Administrator/PHP/AdminUpdateCategory.php. The manipulation of the argument txtcat results in sql injection. The attack can be executed remotely. The exploit has bee...

Code-Projects Student Web Portal SQL注入漏洞

Code-Projects Student Web Portal is an open-source student portal developed by Code-Projects. Version 1.0 of Code-Projects Student Web Portal has a SQL injection vulnerability, which stems from incorrect handling of the Username parameter in the file /checkuser.php, potentially leading to SQL...

Code-Projects Online Student Management System SQL注入漏洞

Code-Projects Online Student Management System is an open-source online student management system developed by Code-Projects. Version 1.0 of the Code-Projects Online Student Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of parameters userna...

Code-Projects Online Examination System SQL注入漏洞

The Code-Projects Online Examination System is an open-source online examination system developed by Code-Projects. Version 1.0 of the Code-Projects Online Examination System has a SQL injection vulnerability. This vulnerability stems from incorrect handling of parameters username and password in...

PT-2026-6987

Name of the Vulnerable Software and Affected Versions code-projects Online Student Management System version 1.0 Description A flaw exists in the Announcement Management Module of code-projects Online Student Management System. This issue allows for cross site scripting through an unknown functio...

PT-2026-6989

Name of the Vulnerable Software and Affected Versions code-projects Student Web Portal version 1.0 Description A flaw exists in code-projects Student Web Portal 1.0 that allows for remote execution of SQL injection. The issue is located in the file /check user.php and involves manipulation of the...

Code-Projects Contact Management System 授权问题漏洞

Code-Projects Contact Management System is an open-source contact management system developed by Code-Projects. Version 1.0 of the Code-Projects Contact Management System has a vulnerability related to authorization issues. This vulnerability stems from incorrect handling of parameter IDs, which...

Code-Projects Contact Management System SQL注入漏洞

Code-Projects Contact Management System is an open-source contact management system developed by Code-Projects. Version 1.0 of the Code-Projects Contact Management System has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter selecteditem0 in the...

PT-2026-7028

Name of the Vulnerable Software and Affected Versions code-projects Online Reviewer System version 1.0 Description A flaw exists in code-projects Online Reviewer System 1.0 where manipulation of the ID argument in the file /system/system/admins/assessments/pretest/questions-view.php can lead to S...

PT-2026-6997

Name of the Vulnerable Software and Affected Versions code-projects Online Reviewer System version 1.0 Description A security issue exists in code-projects Online Reviewer System 1.0 related to SQL injection. The issue is located in the Login component, specifically within the file...

PT-2026-7008

Name of the Vulnerable Software and Affected Versions code-projects Contact Management System version 1.0 Description A security issue exists in code-projects Contact Management System. The problem involves the processing of the index.py file and manipulation of the selecteditem0 argument, leadin...

Code-Projects Online Music Site SQL注入漏洞

Code-Projects Online Music Site is an online music website developed by Code-Projects as open source. Version 1.0 of Code-Projects Online Music Site has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the txtcat parameter in...

Code-Projects Online Application System for Admission SQL注入漏洞

Code-Projects Online Application System for Admission is an online application system developed by Code-Projects. Version 1.0 of the Code-Projects Online Application System for Admission contains a SQL injection vulnerability. This vulnerability stems from incorrect operations with the...

CVE-2026-2083

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /deletepost.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...

CVE-2026-2083

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /deletepost.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...

CVE-2026-2083 code-projects Social Networking Site delete_post.php sql injection

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /deletepost.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...

CVE-2026-2083 code-projects Social Networking Site delete_post.php sql injection

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /deletepost.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...

CVE-2026-2083

CVE-2026-2083 affects code-projects Social Networking Site 1.0. The flaw is in the unknown function of the file /delete_post.php ; manipulating the ID argument yields an SQL injection . It is remotely exploitable and the exploit has been publicly released. Multiple sources (NVD, Red Hat, CVE list...