Code-Projects Online Music Site SQL注入漏洞

Code-Projects Online Music Site is an open source online music site by Code-Projects. A SQL injection vulnerability exists in Code-Projects Online Music Site version 1.0, which stems from an incorrect manipulation of the parameter fname in the file /Frontend/Feedback.php, which could lead to a SQ...

EUVD-2020-21632

Malware in sbrugna...

EUVD-2009-3939

Malware in sbrugna...

EUVD-2025-12375

Malicious code in bioql PyPI...

CVE-2025-9473

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

CVE-2025-9473

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

CVE-2025-9473 SourceCodester Online Bank Management System feedback.php sql injection

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

PT-2025-17438 · Unknown · Code-Projects Online Exam Mastering System

Name of the Vulnerable Software and Affected Versions: code-projects Online Exam Mastering System version 1.0 Description: The issue concerns a Cross Site Scripting XSS vulnerability in the feedback.php file via the q parameter, allowing remote attackers to execute arbitrary code. Recommendations...

CVE-2025-28121

CVE-2025-28121 affects code-projects Online Exam Mastering System 1.0. The vulnerability is a reflected Cross-Site Scripting (XSS) in feedback.php via the q parameter, where input is reflected without proper sanitization. Exploitation PoCs and public writeups (e.g., Exploit-DB, PacketStorm, GitHu...

CVE-2025-28121

code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting XSS in feedback.php via the "q" parameter allowing remote attackers to execute arbitrary code...

CVE-2024-0346

CVE-2024-0346: In CodeAstro Vehicle Booking System 1.0, the Feedback Page’s usr/user-give-feedback.php accepts and manipulates the parameter My Testemonial to trigger cross-site scripting. Attacks are remote and the exploit has been disclosed publicly. The connected documents do not provide a con...

CVE-2020-29257

Cross-site scripting XSS vulnerability in Online Examination System 1.0 via the q parameter to feedback.php...

Cross site scripting

Cross-site scripting XSS vulnerability in Online Examination System 1.0 via the q parameter to feedback.php...

CVE-2020-29259

CVE-2020-29259 is a cross-site scripting (XSS) vulnerability in Online Examination System 1.0, exploitable via the subject or feedback parameter to feedback.php. The root cause is insufficient input validation/ sanitization of user-supplied data, enabling attacker-controlled script execution in t...

CVE-2020-29257

CVE-2020-29257: Cross-site scripting in Online Examination System 1.0 (SourceCodester Online Examination System) via the q parameter to feedback.php. Root cause: user input in q is not properly filtered, enabling injection of JavaScript that can execute in the victim’s browser. Documented impact:...

piiaf.org.uk XSS vulnerability

Open Bug Bounty ID: OBB-665796 Description| Value ---|--- Affected Website:| piiaf.org.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

lib.cam.ac.uk XSS vulnerability

Open Bug Bounty ID: OBB-665208 Description| Value ---|--- Affected Website:| lib.cam.ac.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

School CMS 1.0.0 Cross Site Scripting

| | Exploit Title: school cms Cross Site Scripting | Exploit Author: Ashiyane Digital security Team | Vendor Homepage : https://www.sourcecodester.com/php/5400/school-website-cms.html | Software Link: https://www.sourcecodester.com/sites/default/files/download/arukumar/schoolcms.zip | Version:...

barflyvirginiabeach.com XSS vulnerability

Vulnerable URL: http://barflyvirginiabeach.com/feedback.php?businessname=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

sdsc.edu XSS vulnerability

Vulnerable URL: http://www.sdsc.edu/assets/scripts/feedback.php?url=http://www.sdsc.edu/pmac/index.html'%22%26%25prompt/XSSPOSED/...