PT-2026-23935

Name of the Vulnerable Software and Affected Versions itsourcecode Free Hotel Reservation System version 1.0 Description A security flaw exists in itsourcecode Free Hotel Reservation System version 1.0. The issue involves a SQL injection impacting an unknown function within the file...

SourceCodester Sales and Inventory System SQL注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of the cost...

itsourcecode University Management System SQL注入漏洞

itsourcecode University Management System is an open-source university management system developed by itsourcecode. Version 1.0 of itsourcecode University Management System has a SQL injection vulnerability. This vulnerability arises from manipulating the parameters in the file...

Projectworlds Online Art Gallery Shop SQL注入漏洞

Projectworlds Online Art Gallery Shop is an online art gallery store open source by Projectworlds. Version 1.0 of Projectworlds Online Art Gallery Shop has a SQL injection vulnerability. This vulnerability arises from incorrect handling of parameters in the file/admin/adminHome.php, specifically...

PT-2026-23975

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description An improper authorization issue exists in SourceCodester Client Database Management System version 1.0. The issue is related to an unknown function within the /superadmin...

SourceCodester Employee Task Management System SQL注入漏洞

SourceCodester Employee Task Management System is an open-source employee task management system developed by SourceCodester. Version 1.0 of the SourceCodester Employee Task Management System has a SQL injection vulnerability. This vulnerability stems from the handling of the Date parameter in th...

PT-2026-23940

Name of the Vulnerable Software and Affected Versions Simple Flight Ticket Booking System version 1.0 Description A SQL injection issue exists in Simple Flight Ticket Booking System version 1.0. The issue is located in the SearchResultOneway.php file and involves manipulation of the from argument...

PT-2026-23986

Name of the Vulnerable Software and Affected Versions EasyCMS versions prior to 1.7 Description A security flaw exists in EasyCMS that allows for remote SQL injection. The issue is located within the Request Parameter Handler component, specifically in the file /RbacuserAction.class.php...

SourceCodester Client Database Management System 授权问题漏洞

SourceCodester Client Database Management System is an open-source client database management system developed by SourceCodester. Version 1.0 of the SourceCodester Client Database Management System has a vulnerability related to authorization issues. This vulnerability stems from incorrect handli...

SourceCodester Sales and Inventory System SQL注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Versions of the SourceCodester Sales and Inventory System prior to version 1.0 contained a SQL injection vulnerability. This vulnerability stemmed from incorrect...

SourceCodester Client Database Management System 授权问题漏洞

SourceCodester Client Database Management System is an open-source client database management system developed by SourceCodester. There were vulnerabilities related to authorization in the 1.0 and 3.1 versions of the SourceCodester Client Database Management System. These vulnerabilities stemmed...

PT-2026-23981

A weakness has been identified in itsourcecode sanitize or validate this input 1.0. Affected is an unknown function of the file /admin/teacher-attendance.php. Executing a manipulation of the argument teacher id can lead to sql injection. The attack may be launched remotely. The exploit has been...

PT-2026-23971

Name of the Vulnerable Software and Affected Versions itsourcecode University Management System version 1.0 Description A flaw exists in itsourcecode University Management System that allows for SQL injection. The issue is located in the /view result.php file. Manipulating the seme argument can...

SourceCodester Client Database Management System 授权问题漏洞

SourceCodester Client Database Management System is an open-source client database management system developed by SourceCodester. Version 1.0 of the SourceCodester Client Database Management System has a vulnerability related to authorization issues. This vulnerability stems from incorrect...

EasyCMS SQL注入漏洞

EasyCMS is a PHP-based website building system from the EasyCMS community. Versions of EasyCMS 1.6 and earlier have a SQL injection vulnerability. This vulnerability stems from incorrect handling of the order parameter in the file/RbacuserAction.class.php file, which may lead to SQL injection...

PT-2026-23972

A flaw has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /superadmin user delete.php of the component Endpoint. Executing a manipulation of the argument user id can lead to improper authorization. The attack may be...

Code-Projects Student Web Portal SQL注入漏洞

Code-Projects Student Web Portal is an open-source student portal developed by Code-Projects. Version 1.0 of Code-Projects Student Web Portal has a SQL injection vulnerability, which stems from the handling of the regpasswd parameter in the signup.php file, potentially leading to SQL injection...

PT-2026-23939

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description A flaw exists in SourceCodester Client Database Management System that allows improper authorization. The issue is related to the manipulation of the manager id argument ...

Projectworlds Online Art Gallery Shop SQL注入漏洞

Projectworlds Online Art Gallery Shop is an online art gallery store open source by Projectworlds. Version 1.0 of the Projectworlds Online Art Gallery Shop has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter fnm in the file/?pass=1, which may lead ...

PT-2026-23952

Name of the Vulnerable Software and Affected Versions SourceCodester Simple Responsive Tourism Website version 1.0 Description A SQL injection issue exists in the Login component of the software, specifically within the /tourism/classes/Login.php?f=login file. The Username argument is susceptible...