41 matches found
SourceCodester Pharmacy Sales and Inventory System 注入漏洞
SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System has a SQL injection vulnerability, which arises from incorrect handling of the...
CVE-2026-30558
A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addcustomer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...
SourceCodester Hotel and Lodge Management System SQL注入漏洞
SourceCodester Hotel and Lodge Management System is SourceCodester open source hotel and lodge management system. A SQL injection vulnerability exists in SourceCodester Hotel and Lodge Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file...
EUVD-2022-46131
Malicious code in bioql PyPI...
CVE-2025-7183
A vulnerability was found in Campcodes Sales and Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /pages/customeraccount.php. The manipulation of the argument Customer leads to sql injection. The attack may be launched remotely. The...
CampCodes Sales and Inventory System 注入漏洞
CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in Campcodes Sales and Inventory System version 1.0, which stems from improper manipulation of the parameter Customer in the file /pages/customeraccount.php, which could lea...
Laundry System insert_laundry.php file cross-site scripting vulnerability
Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Customer in the file /data/insertlaundry.php, which can be exploited by an attacker to execute...
Laundry System edit_laundry.php file cross-site scripting vulnerability
Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Customer in the file /data/editlaundry.php, which can be exploited by an attacker to execute...
CVE-2025-5765
A vulnerability was found in code-projects Laundry System 1.0. It has been classified as problematic. This affects an unknown part of the file /data/editlaundry.php. The manipulation of the argument Customer leads to cross site scripting. It is possible to initiate the attack remotely. The exploi...
CVE-2025-5764
A vulnerability was found in code-projects Laundry System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /data/insertlaundry.php. The manipulation of the argument Customer leads to cross site scripting. The attack may be launched remotely. The...
Code-Projects Laundry System 代码注入漏洞
Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Customer in the file /data/insertlaundry.php, which can be exploited by an attacker to execute...
Code-Projects Laundry System 代码注入漏洞
Laundry System is a laundry system. Laundry System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Customer in the file /data/editlaundry.php, which can be exploited by an attacker to execute...
CVE-2020-36077
SQL injection vulnerability found in Tailor Mangement System v.1 allows a remote attacker to execute arbitrary code via the customer parameter of the orderadd.php file...
Codezips ISP Management System 安全漏洞
Codezips ISP Management System is an open source ISP management system from Codezips. A security vulnerability exists in Codezips ISP Management System version 1.0 due to a SQL injection in the parameter customer...
Tailoring Management System 安全漏洞
Tailoring Management System is a tailoring management system from itsourcecode open source. A security vulnerability exists in Tailoring Management System version 1.0, which stems from an incorrect manipulation of the parameter customer that can lead to sql injection...
CVE-2024-6953
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file sms.php. The manipulation of the argument customer leads to sql injection. The attack may be initiated remotely. The exploit has been...
PT-2024-37992 · Unknown · Itsourcecode Tailoring Management System
Name of the Vulnerable Software and Affected Versions: itsourcecode Tailoring Management System version 1.0 Description: A critical issue affects the processing of the file sms.php, where the manipulation of the customer argument leads to sql injection. The attack can be initiated remotely...
CVE-2024-6253
A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...
Online Food Ordering System and Food Ordering System SQL Injection Vulnerabilities
Online Food Ordering System is an online food ordering system developed by Carlo Montero, an individual developer. A SQL injection vulnerability exists in Online Food Ordering System version 1.0, which stems from an incorrect manipulation of the parameter customer that can result in an sql...
CVE-2024-6195
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file orderadd.php. The manipulation of the argument customer leads to sql injection. The attack can be launched remotely. Th...