EUVD-2025-29827

Malicious code in bioql PyPI...

CVE-2025-10623

A vulnerability was identified in SourceCodester Hotel Reservation System 1.0. The impacted element is an unknown function of the file deleteuser.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and...

SourceCodester Hotel Reservation System SQL注入漏洞

SourceCodester Hotel Reservation System is a SourceCodester open source hotel reservation system. A SQL injection vulnerability exists in SourceCodester Hotel Reservation System version 1.0, which stems from incorrect manipulation of the parameter ID in the file deleteuser.php, which could lead t...

CVE-2025-0171

A vulnerability, which was classified as critical, was found in code-projects Chat System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

Chat System deleteuser.php File SQL Injection Vulnerability

Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that originates from a SQL injection in the parameter id of the /admin/deleteuser.php file. An attacker can exploit this vulnerability to obtain sensitive information...

CVE-2025-0171 code-projects Chat System deleteuser.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Chat System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

CVE-2025-0171 code-projects Chat System deleteuser.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Chat System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

Sql injection

A vulnerability was found in SourceCodester Loan Management System 1.0. It has been classified as critical. Affected is the function deleteuser of the file deleteUser.php of the component Users Page. The manipulation of the argument userid leads to sql injection. It is possible to launch the atta...

CVE-2023-6312 SourceCodester Loan Management System Users Page deleteUser.php delete_user sql injection

A vulnerability was found in SourceCodester Loan Management System 1.0. It has been classified as critical. Affected is the function deleteuser of the file deleteUser.php of the component Users Page. The manipulation of the argument userid leads to sql injection. It is possible to launch the atta...

PT-2023-32612 · Sourcecodester · Sourcecodester Loan Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Loan Management System version 1.0 Description: A critical issue has been found in the Users Page component, specifically in the delete user function of the deleteUser.php file. The manipulation of the user id argument leads to...

2532/gigs 1.2.2 - stable Multiple Vulnerabilities

No description provided by source. START 0x01 Informations: Script : 2532|Gigs v1.2 Stable Download : http://www.hotscripts.com/jump.php?listingid=65863&jumptype=1 Dork : Powered by 2532|Gigs v1.2.2 Vulnerability : Local File Inclusion / Remote File Upload Author : Osirys Contact :...

2532|Gigs 1.2 Stable LFI / File Upload Vulnerabilities

START 0x01 Informations: Script : 2532|Gigs v1.2 Stable Download : http://www.hotscripts.com/jump.php?listingid=65863&jumptype=1 Dork : Powered by 2532|Gigs v1.2.2 Vulnerability : Local File Inclusion / Remote File Upload Author : Osirys Contact : osirysatlivedotit Website : http://osirys.org Not...

2532|Gigs 1.2.2 Stable Multiple Remote Vulnerabilities

No description provided by source. START 0x01 Informations: Script : 2532|Gigs v1.2 Stable Download : http://www.hotscripts.com/jump.php?listingid=65863&jumptype=1 Dork : Powered by 2532|Gigs v1.2.2 Vulnerability : Local File Inclusion / Remote File Upload Author : Osirys Contact :...

Design/Logic Flaw

Prozilla Reviews 1.0 allows remote attackers to delete arbitrary users via a modified UserID parameter in a direct request to siteadmin/DeleteUser.php...

CVE-2008-1783

Prozilla Reviews 1.0 allows remote attackers to delete arbitrary users via a modified UserID parameter in a direct request to siteadmin/DeleteUser.php...

CVE-2006-1144

Cross-site scripting XSS vulnerability in HitHost 1.0.0 allows remote attackers to inject arbitrary web script or HTML via 1 the user parameter in deleteuser.php and 2 the hits parameter in viewuser.php...

CVE-2006-1144

Cross-site scripting XSS vulnerability in HitHost 1.0.0 allows remote attackers to inject arbitrary web script or HTML via 1 the user parameter in deleteuser.php and 2 the hits parameter in viewuser.php...

CVE-2006-1144

CVE-2006-1144 concerns HitHost 1.0.0 and is an XSS vulnerability. The issue allows remote attackers to inject arbitrary web script or HTML via two parameters: (1) user in deleteuser.php and (2) hits in viewuser.php. The NVD entry lists a low base score (CVSS v2: 2.6, AV:N/AC:H/Au:N/I:P/A:N) with ...

HitHost 1.0 - deleteuser.php?user Cross-Site Scripting

HitHost 1.0 - deleteuser.php?user Cross-Site Scripting source: https://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...