CVE-2026-0579 code-projects Online Product Reservation System POST Parameter edit.php sql injection

A vulnerability was found in code-projects Online Product Reservation System 1.0. This affects an unknown part of the file /handgunner-administrator/edit.php of the component POST Parameter Handler. The manipulation of the argument prodid/name/price/model/serial results in sql injection. The atta...

CVE-2025-14227

A security flaw has been discovered in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d958. This issue affects some unknown processing of the file /edit.php. The manipulation results in sql injection. The attack may be performed from remote. The exploit has been released to...

CVE-2025-14227

CVE-2025-14227 affects Philipinho Simple-PHP-Blog (up to commit 94b5d3e57308bce5dfbc44c3edafa9811893d958). The vulnerability is an SQL injection in the /edit.php handler caused by improper input processing. It is remotely exploitable over the network with no privileges and no user interaction req...

CVE-2025-14227 Philipinho Simple-PHP-Blog edit.php sql injection

A security flaw has been discovered in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d958. This issue affects some unknown processing of the file /edit.php. The manipulation results in sql injection. The attack may be performed from remote. The exploit has been released to...

CVE-2025-14215 code-projects Currency Exchange System edit.php sql injection

A vulnerability was found in code-projects Currency Exchange System 1.0. This vulnerability affects unknown code of the file /edit.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

CVE-2025-13303

A vulnerability was determined in code-projects Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /search-edit.php. This manipulation of the argument Consignment causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

CVE-2025-13303

A vulnerability was determined in code-projects Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /search-edit.php. This manipulation of the argument Consignment causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

PT-2025-45424

Name of the Vulnerable Software and Affected Versions DedeBIZ versions prior to 6.3.3 Description A flaw exists in DedeBIZ that allows for SQL injection. This issue affects an unknown function within the /admin/templets one edit.php file. The ids parameter is susceptible to manipulation,...

CampCodes Advanced Online Voting Management System SQL注入漏洞

CampCodes Advanced Online Voting Management System is an advanced online voting management system from CampCodes Philippines, Inc. A SQL injection vulnerability exists in CampCodes Advanced Online Voting Management System version 1.0, which stems from incorrect manipulation of the parameter ID in...

CVE-2025-11039 Campcodes Computer Sales and Inventory System us_edit1.php sql injection

A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/usedit1.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. Th...

CVE-2025-10828

CVE-2025-10828 concerns a SQL injection in SourceCodester Pet Grooming Management Software 1.0, triggered by manipulation of the ID parameter in the file /admin/edit.php. This leads to remote exploitation and is supported by multiple feeds (NVD and partner reports) with a high severity (NVD base ...

PT-2025-39099

Name of the Vulnerable Software and Affected Versions SourceCodester Pet Grooming Management Software version 1.0 Description A security issue exists in SourceCodester Pet Grooming Management Software version 1.0. Manipulation of the ID argument in the file '/admin/edit.php' can lead to SQL...

CVE-2025-10435

A security flaw has been discovered in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/custedit1.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been...

CVE-2025-9773

A flaw has been found in RemoteClinic up to 2.0. This vulnerability affects unknown code of the file /staff/edit.php. Executing manipulation of the argument Last Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been published and may be used...

CVE-2025-9706 SourceCodester Water Billing System edit.php sql injection

A security vulnerability has been detected in SourceCodester Water Billing System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed...

CVE-2024-1701

A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...

CVE-2022-41544

GetSimple CMS v3.3.16 was discovered to contain a remote code execution RCE vulnerability via the editedfile parameter in admin/theme-edit.php...

Digital China Networks多款产品 安全漏洞

Digital China Networks DCME-520 DCN DCME-520 and others are products of Digital China Networks China.Digital China Networks DCME-520 is a new generation of high-performance security gateway with multi-core high performance. Digital China Networks DCME-320 DCN DCME-320 is a wireless router.Digital...

CVE-2024-3419

A vulnerability has been found in SourceCodester Online Courseware 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/edit.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit ha...

PT-2024-25778 · Sourcecodester · Sourcecodester Online Courseware

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Courseware version 1.0 Description: A problematic issue has been found in the software, affecting the file edit.php. The manipulation of the id argument leads to cross-site scripting. The attack can be initiated remotely...