20 matches found
CVE-2026-5157 code-projects Online Food Ordering System Order order.php cross site scripting
A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an unknown function of the file /form/order.php of the component Order Module. Such manipulation of the argument custid leads to cross site scripting. The attack may be performed from remote. The exploit ...
CVE-2026-5034
A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /editcostumer.php of the component Parameter Handler. This manipulation of the argument cosid causes sql injection. It is possible to initiate the attack remotely. The...
Code-Projects Accounting System SQL注入漏洞
Code-Projects Accounting System is an accounting system developed by Code-Projects as open source. Version 1.0 of Code-Projects Accounting System has a SQL injection vulnerability. This vulnerability stems from improper handling of the cosid parameter in the file/viewcostumer.php, which may lead ...
EUVD-2014-4880
Malware in sbrugna...
CampCodes Complaint Management System 注入漏洞
CampCodes Complaint Management System is a complaint management system from CampCodes Philippines. Campcodes Complaint Management System version 1.0 suffers from an injection vulnerability that stems from improper handling of the parameter cid in the file /users/complaint-details.php, which could...
CVE-2023-31939
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the costomerid parameter at customeredit.php...
SQL Injection in 'core/ajax/ajax_data.php'
Description There exists an SQL injection affecting the customerid parameter located in the file core/ajax/ajaxdata.php Let's take a look at the following code: https://github.com/unilogies/bumsys/blob/9dc2de204116297a7e528c38bc3b1e89bf40f907/core/ajax/ajaxdata.phpL537 sql where stockproductid =...
Lead Management System SQL注入漏洞
Lead management system is a lead management system developed by Mayuri K. The Lead Management System v1.0 version is vulnerable to SQL injection, which stems from a lack of validation of external input SQL statements in the customerid parameter in ajaxrepresent.php. statement in ajaxrepresent.php...
PT-2023-15498 · Unknown · Lead Management System
Name of the Vulnerable Software and Affected Versions: Lead Management System version 1.0 Description: The issue concerns SQL Injection via the customer id parameter in the "ajax represent.php" file. This allows for potential manipulation of database queries. Recommendations: For Lead Management...
CVE-2022-40117
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the custid parameter at /net-banking/deletecustomer.php...
CVE-2022-40115
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the custid parameter at /net-banking/deletebeneficiary.php...
CVE-2022-40122
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the custid parameter at /net-banking/editcustomeraction.php...
Online Banking System SQL注入漏洞
Online Banking System is an online banking system developed using PHP and MySQL. v1.0 of Online Banking System has a security vulnerability that originates in the /net-banking/deletebeneficiary.php location where the custid parameter has SQL injection issue. No detailed vulnerability details are...
Online Banking System SQL注入漏洞
Online Banking System is an online banking system developed using PHP and MySQL. v1.0 of Online Banking System has a security vulnerability that originates from an SQL injection in the custid parameter of the /net-banking/deletecustomer.php location. issue. No details of the vulnerability are...
Banking System SQL注入漏洞
Online Banking System is a simple banking system project. It is used to manage bank customer accounts and process basic customer transactions.Online Banking System SQL injection vulnerability, which stems from a SQL injection issue in the custid parameter in the /net-banking/editcustomeraction.ph...
Online Banking System SQL注入漏洞
Online Banking System is an online banking system developed using PHP and MySQL. v1.0 of Online Banking System is vulnerable due to a SQL injection issue in the custid parameter in the /net-banking/editcustomer.php location . No details of the vulnerability are available at this time...
PT-2022-25218 · Unknown · Online Banking System
Name of the Vulnerable Software and Affected Versions: Online Banking System version 1.0 Description: The issue is related to a SQL injection vulnerability. It can be exploited via the cust id parameter at the "/net-banking/delete beneficiary.php" API endpoint. Recommendations: For Online Banking...
Hotel-Mgmt-System SQL注入漏洞
Hotel-Mgmt-System is a hotel management system. A SQL injection vulnerability exists in Raymart DG / Ahmed Helal Hotel-mgmt-system, where a malicious attacker can retrieve sensitive database information and interact with the database using the vulnerable cid parameter in processupdateprofile.php...
CVE-2014-4963
Shopizer 1.1.5 and earlier allows remote attackers to modify the account settings of arbitrary users via the customer.customerId parameter to shop/profile/register.action...
Design/Logic Flaw
Shopizer 1.1.5 and earlier allows remote attackers to modify the account settings of arbitrary users via the customer.customerId parameter to shop/profile/register.action...