Lucene search
K

62 matches found

CNVD
CNVD
added 2025/12/10 12:0 a.m.2 views

Currency Exchange System /edit.php File SQL Injection Vulnerability

Currency Exchange System is a currency exchange system. The Currency Exchange System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of file /edit.php. An attacker can exploit this vulnerability to execute...

9.8CVSS7.8AI score0.00326EPSS
Exploits1References1
CNVD
CNVD
added 2025/12/10 12:0 a.m.5 views

Currency Exchange System /edittrns.php File SQL Injection Vulnerability

Currency Exchange System is a currency exchange system. The Currency Exchange System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /edittrns.php. An attacker can exploit this vulnerabilit...

9.8CVSS7.8AI score0.00333EPSS
Exploits1References1
CNVD
CNVD
added 2025/12/10 12:0 a.m.4 views

Currency Exchange System /editotheraccount.php File SQL Injection Vulnerability

Currency Exchange System is a currency exchange system. The Currency Exchange System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /editotheraccount.php. An attacker can exploit this vulnerabili...

9.8CVSS7.9AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 5:37 a.m.6 views

CVE-2025-14218

A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has be...

9.8CVSS7AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 5:37 a.m.9 views

CVE-2025-14217

A vulnerability was identified in code-projects Currency Exchange System 1.0. Impacted is an unknown function of the file /edittrns.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...

9.8CVSS7AI score0.00333EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 4:42 a.m.8 views

CVE-2025-14215

A vulnerability was found in code-projects Currency Exchange System 1.0. This vulnerability affects unknown code of the file /edit.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

9.8CVSS7.1AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 4:42 a.m.10 views

CVE-2025-14216

A vulnerability was determined in code-projects Currency Exchange System 1.0. This issue affects some unknown processing of the file /viewserial.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclos...

9.8CVSS7.1AI score0.00333EPSS
Exploits1References1
NVD
NVD
added 2025/12/08 6:15 a.m.4 views

CVE-2025-14218

A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has be...

9.8CVSS0.00326EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 6:15 a.m.5 views

CVE-2025-14218

A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has be...

9.8CVSS5.8AI score0.00326EPSS
Exploits1References5
CVE
CVE
added 2025/12/08 5:32 a.m.13 views

CVE-2025-14218

CVE-2025-14218 affects code-projects Currency Exchange System version 1.0, specifically the /editotheraccount.php file. The vulnerability arises from an injectable ID parameter in an unknown function, enabling SQL injection that can be exploited remotely. Multiple connected sources reiterate that...

9.8CVSS6.7AI score0.00326EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/12/08 5:32 a.m.28 views

CVE-2025-14218 code-projects Currency Exchange System editotheraccount.php sql injection

A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS0.00326EPSS
Exploits1References5
EUVD
EUVD
added 2025/12/08 5:32 a.m.6 views

EUVD-2025-201666

A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS6.5AI score0.00326EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/12/08 5:32 a.m.1 views

CVE-2025-14218 code-projects Currency Exchange System editotheraccount.php sql injection

A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS6.7AI score0.00326EPSS
Exploits1References5
NVD
NVD
added 2025/12/08 5:16 a.m.4 views

CVE-2025-14216

A vulnerability was determined in code-projects Currency Exchange System 1.0. This issue affects some unknown processing of the file /viewserial.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclos...

9.8CVSS0.00333EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 5:16 a.m.6 views

CVE-2025-14216

A vulnerability was determined in code-projects Currency Exchange System 1.0. This issue affects some unknown processing of the file /viewserial.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclos...

9.8CVSS5.7AI score0.00333EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 5:16 a.m.11 views

CVE-2025-14217

A vulnerability was identified in code-projects Currency Exchange System 1.0. Impacted is an unknown function of the file /edittrns.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...

9.8CVSS5.7AI score0.00333EPSS
Exploits1References5
NVD
NVD
added 2025/12/08 5:16 a.m.3 views

CVE-2025-14217

A vulnerability was identified in code-projects Currency Exchange System 1.0. Impacted is an unknown function of the file /edittrns.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...

9.8CVSS0.00333EPSS
Exploits1References5
NVD
NVD
added 2025/12/08 5:16 a.m.4 views

CVE-2025-14215

A vulnerability was found in code-projects Currency Exchange System 1.0. This vulnerability affects unknown code of the file /edit.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

9.8CVSS0.00326EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 5:16 a.m.10 views

CVE-2025-14215

A vulnerability was found in code-projects Currency Exchange System 1.0. This vulnerability affects unknown code of the file /edit.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

9.8CVSS5.8AI score0.00326EPSS
Exploits1References5
CVE
CVE
added 2025/12/08 5:2 a.m.13 views

CVE-2025-14217

CVE-2025-14217 describes a SQL injection vulnerability in Currency Exchange System 1.0, arising from lack of validation of the SQL statement in the parameter ID of the file /edittrns.php. Multiple connected sources (CNVD, Red Hat, CNNVD, CVE lists, PT-SEC) confirm remote exploitation and public a...

9.8CVSS6.7AI score0.00333EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder