5 matches found
Yonyou KSOA SQL注入漏洞
Yonyou KSOA is an enterprise management software from China's UFIDA Yonyou company. A SQL injection vulnerability exists in Yonyou KSOA version 9.0, which stems from incorrect manipulation of the parameter ID in the file /worksheet/deluser.jsp, which could lead to a SQL injection attack...
CVE-2025-14940
A vulnerability was determined in code-projects Scholars Tracking System 1.0. The affected element is an unknown function of the file /admin/deleteuser.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly...
Student File Management System user_id Parameter SQL Injection Vulnerability
Student File Management System is a student file management system. A SQL injection vulnerability exists in Student File Management System, which originates from an incorrect manipulation of the parameter userid in the file /admin/deleteuser.php, and can be exploited by an attacker to obtain or...
EUVD-2025-29728
Malicious code in bioql PyPI...
Kirby 跨站请求伪造漏洞
Kirby is a file-based content management system CMS. A security vulnerability exists in Kirby version 2.5.12, which can be exploited to force the deletion of a user's page by a remote attacker who can craft a malicious CSRF page that utilizes its "delete" page feature...