EUVD-2025-197649

A vulnerability was found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. Impacted is an unknown function of the file /editprofile. Performing manipulation of the argument firstname/lastname results in basic cross site scripting. It is possible to...

CVE-2025-12287 Bdtask Wholesale Inventory Control and Inventory Management System edit_profile sql injection

A security vulnerability has been detected in Bdtask Wholesale Inventory Control and Inventory Management System up to 20251013. This impacts an unknown function of the file /Admindashboard/editprofile. Such manipulation of the argument firstname/lastname leads to sql injection. The attack may be...

EUVD-2024-33128

Malicious code in bioql PyPI...

Hospital Management System /edit-profile.php File Cross-Site Scripting Vulnerability

Hospital Management System a PHP and MySQL based hospital management system. Hospital Management System suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in /edit-profile.php, which can be exploited by an...

CVE-2020-22173

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\edit-profile.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...

PHP Scripts Mall Entrepreneur Job Portal Script Cross-Site Request Forgery Vulnerability

PHP Scripts Mall Entrepreneur Job Portal Script is a PHP script that allows you to create your own job portal. PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 suffers from a cross-site request forgery vulnerability that can be exploited via the Edit Profile feature...