CVE-2026-2190

The CVE-2026-2190 entry affects itsourcecode School Management System 1.0, specifically the file /ramonsys/user/controller.php where SQL injection is triggered by manipulating the ID argument. Multiple connected feeds (Red Hat, NVD, CVE lists, PT Security) confirm remote exploitation possibility,...

CVE-2026-1551

A weakness has been identified in itsourcecode School Management System 1.0. This affects an unknown part of the file /ramonsys/course/controller.php. Executing a manipulation of the argument ID can lead to sql injection. The attack can be executed remotely. The exploit has been made available to...

CVE-2025-63695

DzzOffice v2.3.7 and before is vulnerable to Arbitrary File Upload in /dzz/system/ueditor/php/controller.php...

CVE-2025-13300 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection

A vulnerability has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected is an unknown function of the file /settings/controller.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-13299

A flaw has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. This impacts an unknown function of the file /user/controller.php. Executing a manipulation can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used...

itsourcecode Web-Based Internet Laboratory SQL注入漏洞

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally-entered SQL statements in the file /subject/controller.php. An attacker c...

itsourcecode Leave Management System 代码注入漏洞

itsourcecode Leave Management System is an open source leave management system from itsourcecode. A code injection vulnerability exists in version 1.0 of itsourcecode Leave Management System, which stems from incorrect manipulation of the parameter ID in the file /module/employee/controller.php,...

EUVD-2005-0300

Malware in sbrugna...

EUVD-2010-4302

Malware in sbrugna...

EUVD-2011-5077

Malware in sbrugna...

EUVD-2019-2448

Malware in sbrugna...

EUVD-2023-23958

Malicious code in bioql PyPI...

EUVD-2024-48282

Malicious code in bioql PyPI...

EUVD-2024-39826

Malicious code in bioql PyPI...

EUVD-2024-47478

Malicious code in bioql PyPI...

itsourcecode Open Source Job Portal 代码问题漏洞

itsourcecode Open Source Job Portal is an enterprise portal site of itsourcecode open source. A code issue vulnerability exists in version 1.0 of itsourcecode Open Source Job Portal, which stems from an incorrect manipulation of the parameter photo in the file /admin/user/controller.php, which...

CVE-2024-25166

Cross Site Scripting vulnerability in 71CMS v.1.0.0 allows a remote attacker to execute arbitrary code via the uploadfile action parameter in the controller.php file...

CVE-2024-6371

A vulnerability, which was classified as critical, has been found in itsourcecode Pool of Bethesda Online Reservation System 1.0. Affected by this issue is some unknown functionality of the file controller.php. The manipulation of the argument rmtypeid leads to sql injection. The attack may be...

CVE-2024-10411

CVE-2024-10411 affects SourceCodester Online Hotel Reservation System 1.0. The vulnerability resides in the admin side, in functions doCancelRoom/doCancel/doConfirm/doCancel/doCheckin/doCheckout of /marimar/admin/mod_room/controller.php, where the id parameter is used in SQL queries, enabling a r...

CVE-2024-10411 SourceCodester Online Hotel Reservation System controller.php doCheckout sql injection

A vulnerability was found in SourceCodester Online Hotel Reservation System 1.0. It has been classified as critical. Affected is the function doCancelRoom/doCancel/doConfirm/doCancel/doCheckin/doCheckout of the file /marimar/admin/modroom/controller.php. The manipulation of the argument id leads ...