573 matches found
CVE-2026-13558
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...
EUVD-2026-40067
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...
CVE-2026-13558 CodeAstro Complaint Management System Report addreport cross site scripting
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...
CVE-2026-13558
CVE-2026-13558 concerns CodeAstro Complaint Management System 1.0. The flaw is in the Report Handler’s /report/addreport flow, where manipulating the Report Title argument enables cross-site scripting (XSS). Exploitation is possible remotely and the exploit has been publicly released. The availab...
CVE-2026-13549
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...
EUVD-2026-40051
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...
CVE-2026-13549 CodeAstro Complaint Management System Report Endpoint Report.php deletereport authorization
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...
CVE-2026-13549
CodeAstro Complaint Management System 1.0 has a vulnerability in the Report Endpoint, specifically the deletereport function in application/controllers/Report.php. The manipulation of this function results in authorization bypass and can be exploited remotely; evidence indicates the exploit is pu...
CVE-2026-7222
A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...
📄 Coaching Management System 1.0 Cross Site Scripting
Coaching Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Stored Cross-Site Scripting XSS in Coaching Management System Leads to Account Takeover --- Product Coaching Management System in PHP Code-Projects.org...
CVE-2026-7229 code-projects Coaching Management System POST reply.php sql injection
A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manipulation of the argument complaintreply results in sql injection. It is possible to initiate the...
CVE-2026-7222
A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...
EUVD-2026-25979
A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...
CVE-2026-7222 code-projects Coaching Management System Complaint Form complaint.php cross site scripting
A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...
CVE-2026-7222
A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...
CVE-2026-7222
The CVE-2026-7222 entry affects code-projects Coaching Management System 1.0, specifically the Complaint Form Page component at /cims/modules/student/complaint.php. The issue is a cross-site scripting vulnerability caused by manipulation of the Complaint argument, allowing remote exploitation. Pu...
PT-2026-35669
A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manipulation of the argument complaintreply results in sql injection. It is possible to initiate the...
Code-Projects Coaching Management System 跨站脚本漏洞
The Code-Projects Coaching Management System is an open-source coaching management system developed by Code-Projects. Version 1.0 of the Code-Projects Coaching Management System contains a cross-site scripting vulnerability. This vulnerability stems from the Complaint Parameter in the Complaint...
PT-2026-35654
A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...
Code-Projects Online FIR System 安全漏洞
Code-Projects Online FIR System is an open-source online FIR system developed by Code-Projects. Version 1.0 of the code-projects Online FIR System contains a security vulnerability. This vulnerability stems from the unsafe storage of the/complaints.sql file in the SQL database backup processing...