Code-Projects College Notes Uploading System 代码问题漏洞

College Notes Uploading System is a college notes uploading system. College Notes Uploading System has a code issue vulnerability that stems from an unknown function in the /dashboard/userprofile.php file that mishandles the image parameter. An attacker can exploit this vulnerability to upload...

Code-Projects Refugee Food Management System SQL注入漏洞

Code-Projects Refugee Food Management System is an open source refugee food management system from Code-Projects. A SQL injection vulnerability exists in Code-Projects Refugee Food Management System version 1.0, which stems from incorrect manipulation of the parameters a/b/c/d in the file...

PT-2025-53756

Name of the Vulnerable Software and Affected Versions code-projects Assessment Management version 1.0 Description A flaw exists in code-projects Assessment Management 1.0, specifically within the file login.php. Manipulation of the userid argument can lead to SQL injection. This issue is remotely...

Code-Projects Student File Management System SQL注入漏洞

Student File Management System is a student file management system. A SQL injection vulnerability exists in Student File Management System due to mishandling of the istoreid parameter by an unknown function module in the /download.php file. An attacker can use this vulnerability to obtain or tamp...

Code-Projects Refugee Food Management System SQL注入漏洞

Code-Projects Refugee Food Management System is an open source refugee food management system from Code-Projects. A SQL injection vulnerability exists in Code-Projects Refugee Food Management System version 1.0, which stems from incorrect manipulation of the parameter rfid in the file...

Code-Projects Content Management System 代码问题漏洞

Code-Projects Content Management System is a Code-Projects open source content and management system. A code issue vulnerability exists in Code-Projects Content Management System version 1.0, which stems from an incorrect manipulation of the parameter image in the file /admin/editposts.php, which...

PT-2025-53742

Name of the Vulnerable Software and Affected Versions code-projects Assessment Management version 1.0 Description A SQL injection issue exists due to manipulation of the linked argument within the /admin/add-module.php file. This manipulation affects some unknown functionality. The attack can be...

CVE-2025-15053

CVE-2025-15053 affects code-projects Student Information System 1.0. The flaw is a SQL injection in the /searchresults.php processing of the searchbox parameter, exploitable remotely. Multiple sources confirm an exploit has been published. No concrete remediation/version fix is provided in the su...

CVE-2025-15053 code-projects Student Information System searchresults.php sql injection

A flaw has been found in code-projects Student Information System 1.0. This issue affects some unknown processing of the file /searchresults.php. Executing manipulation of the argument searchbox can lead to sql injection. The attack may be performed from remote. The exploit has been published and...

CVE-2025-15053 code-projects Student Information System searchresults.php sql injection

A flaw has been found in code-projects Student Information System 1.0. This issue affects some unknown processing of the file /searchresults.php. Executing manipulation of the argument searchbox can lead to sql injection. The attack may be performed from remote. The exploit has been published and...

CVE-2025-15052 code-projects Student Information System profile.php cross site scripting

A vulnerability was detected in code-projects Student Information System 1.0. This vulnerability affects unknown code of the file /profile.php. Performing manipulation of the argument firstname/lastname results in cross site scripting. The attack is possible to be carried out remotely. The exploi...

CVE-2025-15052 code-projects Student Information System profile.php cross site scripting

A vulnerability was detected in code-projects Student Information System 1.0. This vulnerability affects unknown code of the file /profile.php. Performing manipulation of the argument firstname/lastname results in cross site scripting. The attack is possible to be carried out remotely. The exploi...

CVE-2025-15052

CVE-2025-15052 affects code-projects Student Information System 1.0. The vulnerability resides in the file /profile.php, where manipulation of the firstname/lastname parameters enables cross-site scripting. This can be exploited remotely and there are public exploits. Multiple connected sources (...

CVE-2025-15050 code-projects Student File Management System save_file.php unrestricted upload

A security vulnerability has been detected in code-projects Student File Management System 1.0. This affects an unknown part of the file /savefile.php. Such manipulation of the argument File leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed publicly...

CVE-2025-15050 code-projects Student File Management System save_file.php unrestricted upload

A security vulnerability has been detected in code-projects Student File Management System 1.0. This affects an unknown part of the file /savefile.php. Such manipulation of the argument File leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed publicly...

CVE-2025-15050

CVE-2025-15050 affects code-projects Student File Management System 1.0. The vulnerability arises from manipulation of the File argument in the /save_file.php (also reported as /save file.php) allowing unrestricted file uploads. Exploitation is remote and publicly disclosed. Several sources (incl...

PT-2025-52866

Name of the Vulnerable Software and Affected Versions code-projects Student Information System version 1.0 Description A security issue exists in code-projects Student Information System 1.0. The issue involves cross site scripting, potentially allowing remote execution of malicious code...

CVE-2025-15049

A vulnerability was identified in code-projects Online Farm System 1.0. Affected is an unknown function of the file /addProduct.php. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-15049 code-projects Online Farm System addProduct.php sql injection

A vulnerability was identified in code-projects Online Farm System 1.0. Affected is an unknown function of the file /addProduct.php. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

Code-Projects Online Farm System SQL注入漏洞

Code-Projects Online Farm System is a Code-Projects open source online farm system. Code-Projects Online Farm System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Username in the file /addProduct.php, which could lead to a SQL...