CVE-2025-10807

A security flaw has been discovered in Campcodes Online Beauty Parlor Management System 1.0. This issue affects some unknown processing of the file /admin/edit-customer-detailed.php. The manipulation of the argument editid results in sql injection. The attack may be launched remotely. The exploit...

PHPGurukul Land Record System 注入漏洞

PHPGurukul Land Record System is a land management system from PHPGurukul. An injection vulnerability exists in PHPGurukul Land Record System version 1.0, which originates from SQL injection due to improper handling of the parameter editid in the file /edit-property.php...

PHPGurukul Teacher Subject Allocation Management System 注入漏洞

Teacher Subject Allocation Management System a teacher subject allocation management system. The Teacher Subject Allocation Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter editid in fi...

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

CVE-2024-13480

The LTL Freight Quotes – For Customers of FedEx Freight plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 3.4.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation o...

CVE-2024-13531

The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the 'editid' parameter in all versions up to, and including, 1.0.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

CVE-2024-13490

The LTL Freight Quotes – XPO Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 4.3.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

PT-2025-6551 · WordPress · Ltl Freight Quotes – For Customers Of Fedex Freight

Name of the Vulnerable Software and Affected Versions: LTL Freight Quotes – For Customers of FedEx Freight plugin for WordPress versions up to, and including, 3.4.1 Description: The issue concerns a SQL injection vulnerability via the edit id and dropship edit id parameters. This vulnerability is...

PT-2025-6550 · WordPress · Ltl Freight Quotes – Unishippers Edition

Name of the Vulnerable Software and Affected Versions: LTL Freight Quotes – Unishippers Edition plugin for WordPress versions up to, and including, 2.5.8 Description: The issue is related to SQL Injection via the edit id parameter due to insufficient escaping on the user-supplied parameter and la...

PT-2025-6561 · WordPress · Small Package Quotes – Purolator Edition

Name of the Vulnerable Software and Affected Versions: Small Package Quotes – Purolator Edition plugin for WordPress versions up to, and including, 3.6.4 Description: The issue is related to SQL Injection via the edit id and dropship edit id parameters due to insufficient escaping on the...

PT-2025-6464 · WordPress · The Small Package Quotes – Ups Edition

Name of the Vulnerable Software and Affected Versions: The Small Package Quotes – UPS Edition plugin for WordPress versions up to, and including, 4.5.16 Description: The issue allows for SQL Injection via the edit id parameter due to insufficient escaping on the user-supplied parameter and lack o...

CVE-2022-31356

Online Ordering System v2.3.2 was discovered to contain a SQL injection vulnerability via /ordering/admin/store/index.php?view=edit&id=...

CVE-2022-32007

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/company/index.php?view=edit&id=...

Muslim Matrimonial Script Cross-Site Scripting Vulnerability

Muslim Matrimonial Script is a community matrimonial script for matrimonial websites by PHP Scripts Mall. A cross-site scripting vulnerability exists in PHP Scripts Mall Muslim Matrimonial Script. The vulnerability can be exploited to conduct cross-site scripting attacks via the...