969 matches found
PT-2025-51139
Name of the Vulnerable Software and Affected Versions Code-Projects Student File Management System version 1.0 Description A flaw exists in Code-Projects Student File Management System version 1.0 that allows for SQL injection. Manipulation of the stud no argument in the /admin/save student.php...
PT-2025-51154
Name of the Vulnerable Software and Affected Versions itsourcecode Online Cake Ordering System version 1.0 Description A flaw exists in itsourcecode Online Cake Ordering System 1.0. The issue affects an unknown part of the /cakeshop/product.php file. Manipulation of the Product argument can lead ...
PT-2025-51171
Name of the Vulnerable Software and Affected Versions snap7-rs versions up to 1.142.1 Description A flaw exists in snap7-rs up to version 1.142.1. The issue resides in the TSnap7MicroClient::opWriteArea function within the s7 micro client.cpp file, potentially leading to a heap-based buffer...
EUVD-2025-203179
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...
CVE-2025-14583
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing a manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be...
EUVD-2025-203122
A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewadmin.php. This manipulation of the argument adminid causes sql injection. The attack may be initiated remotely. The exploit has been publishe...
PT-2025-50963
Name of the Vulnerable Software and Affected Versions projectworlds Advanced Library Management System version 1.0 Description A flaw exists in projectworlds Advanced Library Management System version 1.0, specifically within the file /view admin.php. Manipulation of the admin id argument can lea...
CVE-2025-14334
A vulnerability (CVE-2025-14334) affects itsourcecode Student Management System version 1.0. The issue is in the file /new_adviser.php (also reported as /new adviser.php in some sources), where manipulating the Name parameter can trigger a SQL injection. The attack can be performed remotely, and ...
CVE-2025-14222
A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...
PT-2025-50209
Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A flaw exists in itsourcecode Student Management System 1.0, specifically within the file /new adviser.php. Manipulation of the Name argument in an unknown function can lead to SQL...
CVE-2025-14257
A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /newrecord.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used...
EUVD-2025-201716
A vulnerability was found in code-projects Simple Shopping Cart 1.0. This vulnerability affects unknown code of the file /Customers/settings.php. Performing manipulation of the argument userid results in sql injection. Remote exploitation of the attack is possible. The exploit has been made publi...
CVE-2025-14222
A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...
EUVD-2025-201693
A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /printpersonnelreport.php. This manipulation of the argument perid causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...
EUVD-2025-201657
A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /membersearch.php. Executing manipulation of the argument rollnumber can lead to sql injection. The attack may be launched remotely. The exploit has been...
PT-2025-49512
A flaw has been found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file /print personnel report.php. This manipulation of the argument per id causes sql injection. The attack may be initiated remotely. The exploit has been published and may be us...
CVE-2025-14203 code-projects Question Paper Generator selectquestionuser.php sql injection
A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and m...
EUVD-2025-201608
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from...
CVE-2025-14199
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from...
CVE-2025-14199
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from...