CVE-2026-10606

A vulnerability was determined in DedeCMS 5.7.88. The affected element is the function TrimMsg of the file /plus/feedback.php of the component Feedback Handler. Executing a manipulation of the argument msg can lead to sql injection. The attack can be launched remotely. The exploit has been public...

CVE-2026-10606

CVE-2026-10606 affects DedeCMS 5.7.88, specifically the TrimMsg function in /plus/feedback.php (Feedback Handler). Manipulating the msg argument can cause a SQL injection. The issue is exploitable remotely with publicly disclosed exploit material; CVSS metrics indicate network access, low attack ...

CVE-2026-0570

A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Frontend/Feedback.php. Performing a manipulation of the argument fname results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

CVE-2026-0570

A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Frontend/Feedback.php. Performing a manipulation of the argument fname results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

PT-2026-1116

Name of the Vulnerable Software and Affected Versions code-projects Online Music Site version 1.0 Description A flaw exists in code-projects Online Music Site 1.0 where manipulation of the fname argument in the /Frontend/Feedback.php file can lead to SQL injection. This issue can be exploited...

EUVD-2002-0744

Malware in sbrugna...

EUVD-2025-25772

Malicious code in bioql PyPI...

CVE-2025-9473 SourceCodester Online Bank Management System feedback.php sql injection

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

PT-2024-39119 · Sourcecodester · Sourcecodester Online Dj Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Bank Management System version 1.0 Description: A vulnerability was found in the component Feedback Handler, affecting an unknown part of the file /mfeedback.php. The manipulation leads to cross-site scripting. It is...

CVE-2020-29259

Cross-site scripting XSS vulnerability in Online Examination System 1.0 via the subject or feedback parameter to feedback.php...

PHP Auctions Cross Site Scripting

Tittle :PHPAUCTIONS XSS Vulnerabilities Author : SENOT [email protected] Homepage : http://www.indonesiancoder.com Date : Thursday 04 March, 2010 Location : - INDONESIA - + INFO + Name : PHPAUCTIONS + Vendor : http://phpauctions.info/ + Vulnerability : XSS + Dork : "Dork Just for newbie"...

CVE-2002-0752

CGIscript.net csMailto.cgi program exports feedback to a file that is accessible from the web document root, which could allow remote attackers to obtain sensitive information by directly accessing the file...