8 matches found
EUVD-2025-197649
A vulnerability was found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. Impacted is an unknown function of the file /editprofile. Performing manipulation of the argument firstname/lastname results in basic cross site scripting. It is possible to...
CVE-2025-12287 Bdtask Wholesale Inventory Control and Inventory Management System edit_profile sql injection
A security vulnerability has been detected in Bdtask Wholesale Inventory Control and Inventory Management System up to 20251013. This impacts an unknown function of the file /Admindashboard/editprofile. Such manipulation of the argument firstname/lastname leads to sql injection. The attack may be...
EUVD-2024-33128
Malicious code in bioql PyPI...
CVE-2025-3806
CVE-2025-3806 affects dazhouda lecms up to version 3.0.3. The vulnerability resides in the Edit Profile Handler’s /admin functionality and enables cross-site scripting, with remote exploitation and a publicly disclosed exploit. Several connected sources confirm the issue and indicate affected ver...
Hospital Management System /edit-profile.php File Cross-Site Scripting Vulnerability
Hospital Management System a PHP and MySQL based hospital management system. Hospital Management System suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in /edit-profile.php, which can be exploited by an...
Prison Management System SQL注入漏洞
Prison Management System is a prison management system by Carlo Montero, a personal developer. A SQL injection vulnerability exists in the SourceCodester Prison Management System version 1.0, which originates in the /Employee/edit-profile.php file and can be exploited for SQL injection attacks...
CVE-2020-22173
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\edit-profile.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
PHP Scripts Mall Entrepreneur Job Portal Script Cross-Site Request Forgery Vulnerability
PHP Scripts Mall Entrepreneur Job Portal Script is a PHP script that allows you to create your own job portal. PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 suffers from a cross-site request forgery vulnerability that can be exploited via the Edit Profile feature...