Lucene search
K

24 matches found

CNVD
CNVD
added 2025/10/31 12:0 a.m.3 views

Online Event Judging System add_contestant.php File SQL Injection Vulnerability

Online Event Judging System is an online event judging system. Online Event Judging System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter fullname in the file /addcontestant.php. An attacker can exploi...

8.8CVSS7.1AI score0.00299EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/28 9:51 a.m.9 views

CVE-2025-12256

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

8.8CVSS6.6AI score0.00396EPSS
Exploits1References1
NVD
NVD
added 2025/10/27 10:15 a.m.3 views

CVE-2025-12256

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

8.8CVSS0.00396EPSS
Exploits1References5
OSV
OSV
added 2025/10/27 10:15 a.m.3 views

CVE-2025-12256

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

8.8CVSS5.8AI score0.00396EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/27 9:32 a.m.6 views

CVE-2025-12256 code-projects Online Event Judging System edit_contestant.php sql injection

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

6.5CVSS0.00396EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/27 9:32 a.m.3 views

CVE-2025-12256 code-projects Online Event Judging System edit_contestant.php sql injection

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

6.5CVSS6.9AI score0.00396EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/27 9:32 a.m.5 views

EUVD-2025-36142

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

6.5CVSS6.7AI score0.00396EPSS
Exploits1References6
CVE
CVE
added 2025/10/27 9:32 a.m.10 views

CVE-2025-12256

CVE-2025-12256 affects code-projects Online Event Judging System 1.0, with a SQL injection in /edit_contestant.php via the contestant_id parameter. A remote attacker can exploit this, and public exploits exist. Root cause is lack of validation of externally provided SQL statements in that paramet...

8.8CVSS6.5AI score0.00396EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/10/27 9:15 a.m.4 views

CVE-2025-12255

A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown part of the file /addcontestant.php. Performing manipulation of the argument fullname results in sql injection. Remote exploitation of the attack is possible. The exploit has been release...

8.8CVSS0.00299EPSS
Exploits1References5
OSV
OSV
added 2025/10/27 9:15 a.m.3 views

CVE-2025-12255

A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown part of the file /addcontestant.php. Performing manipulation of the argument fullname results in sql injection. Remote exploitation of the attack is possible. The exploit has been release...

8.8CVSS5.7AI score0.00299EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/27 9:2 a.m.3 views

CVE-2025-12255 code-projects Online Event Judging System add_contestant.php sql injection

A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown part of the file /addcontestant.php. Performing manipulation of the argument fullname results in sql injection. Remote exploitation of the attack is possible. The exploit has been release...

6.5CVSS6.3AI score0.00299EPSS
Exploits1References5
CVE
CVE
added 2025/10/27 9:2 a.m.9 views

CVE-2025-12255

CVE-2025-12255 affects code-projects Online Event Judging System 1.0. A SQL injection flaw originates from the lack of validation of the fullname parameter in /add_contestant.php. The vulnerability allows remote execution of arbitrary SQL commands and may lead to data theft or modification; an ex...

8.8CVSS6.5AI score0.00299EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.4 views

Code-Projects Online Event Judging System SQL注入漏洞

Online Event Judging System is an online event judging system. Online Event Judging System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter contestantid in the file /editcontestant.php. An attacker can...

8.8CVSS8.2AI score0.00396EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.5 views

PT-2025-43915

Name of the Vulnerable Software and Affected Versions code-projects Online Event Judging System version 1.0 Description A weakness exists in code-projects Online Event Judging System 1.0. The issue affects unknown code within the '/edit contestant.php' file. Manipulation of the contestant id...

8.8CVSS7.6AI score0.00396EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.3 views

Code-Projects Online Event Judging System SQL注入漏洞

Online Event Judging System is an online event judging system. Online Event Judging System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter fullname in the file /addcontestant.php. An attacker can exploi...

8.8CVSS8.2AI score0.00299EPSS
Exploits1References5
OSV
OSV
added 2023/05/12 11:15 a.m.3 views

CVE-2023-30246

SQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the contestantid parameter...

9.8CVSS7.6AI score0.01311EPSS
Exploits1References2
OSV
OSV
added 2023/04/16 8:15 a.m.7 views

CVE-2023-2108

A vulnerability has been found in SourceCodester Judging Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file editcontestant.php. The manipulation of the argument contestantid leads to sql injection. The attack can be launched...

9.8CVSS5.7AI score0.00613EPSS
Exploits0References3
Prion
Prion
added 2023/04/16 8:15 a.m.18 views

Sql injection

A vulnerability has been found in SourceCodester Judging Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file editcontestant.php. The manipulation of the argument contestantid leads to sql injection. The attack can be launched...

6.5CVSS9.7AI score0.00613EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/04/16 7:31 a.m.25 views

CVE-2023-2108 SourceCodester Judging Management System edit_contestant.php sql injection

A vulnerability has been found in SourceCodester Judging Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file editcontestant.php. The manipulation of the argument contestantid leads to sql injection. The attack can be launched...

6.5CVSS10AI score0.00613EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/16 12:0 a.m.3 views

Judging Management System SQL注入漏洞

Judging Management System is a judging management system by Carlo Montero, a personal developer. A SQL injection vulnerability exists in the SourceCodester Judging Management System version 1.0, which is caused by an unknown function in the file editcontestant.php that results in a sql injection...

9.8CVSS7.1AI score0.00613EPSS
Exploits0References4
Rows per page
Query Builder