206 matches found
PT-2025-37775
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A SQL injection flaw exists due to the manipulation of the firstname argument in the /admin/save user.php file. This manipulation can be carried out remotely. The...
CVE-2025-10075
A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-10075
A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-10075
A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-10075 SourceCodester Online Polling System manage-profile.php cross site scripting
A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-10075 SourceCodester Online Polling System manage-profile.php cross site scripting
A security flaw has been discovered in SourceCodester Online Polling System 1.0. The impacted element is an unknown function of the file /manage-profile.php. The manipulation of the argument firstname results in cross site scripting. The attack can be launched remotely. The exploit has been...
CVE-2025-10075
SourceCodester Online Polling System 1.0 contains a cross-site scripting (XSS) flaw in /manage-profile.php triggered by manipulating the firstname parameter. The vulnerability can be exploited remotely and exploits have been released publicly. Multiple sources (NVD, Red Hat, CNNVD, PT-Security, a...
CVE-2025-9786
A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teachersignup.php. Performing manipulation of the argument firstname results in sql injection. The attack can be initiated remotely. The exploit has been made public and coul...
CVE-2025-9794
A flaw has been found in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/postransac.php?action=add. Executing manipulation of the argument cash/firstname can lead to sql injection. The attack may be performed from remote. The explo...
CVE-2025-9794 Campcodes Computer Sales and Inventory System pos_transac.php sql injection
A flaw has been found in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/postransac.php?action=add. Executing manipulation of the argument cash/firstname can lead to sql injection. The attack may be performed from remote. The explo...
CVE-2025-9786
A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teachersignup.php. Performing manipulation of the argument firstname results in sql injection. The attack can be initiated remotely. The exploit has been made public and coul...
CVE-2025-9786 Campcodes Online Learning Management System teacher_signup.php sql injection
A vulnerability was found in Campcodes Online Learning Management System 1.0. Affected is an unknown function of the file /teachersignup.php. Performing manipulation of the argument firstname results in sql injection. The attack can be initiated remotely. The exploit has been made public and coul...
CampCodes Computer Sales and Inventory System 安全漏洞
CampCodes Computer Sales and Inventory System is a computerized sales and inventory system from CampCodes Philippines. A security vulnerability exists in CampCodes Computer Sales and Inventory System version 1.0, which stems from a SQL injection due to incorrect manipulation of the parameter...
PT-2025-35496
Name of the Vulnerable Software and Affected Versions: Campcodes Online Learning Management System version 1.0 Description: A SQL injection issue exists in Campcodes Online Learning Management System version 1.0. The issue is located in the /teacher signup.php file, within an unknown function...
PT-2025-35510
Name of the Vulnerable Software and Affected Versions: Campcodes Computer Sales and Inventory System version 1.0 Description: A flaw exists in Campcodes Computer Sales and Inventory System that may allow for SQL injection. The issue is located in an unknown function within the /pages/pos...
CVE-2023-41522
Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createStudents.php via the Id, firstname, and admissionNumber parameters...
Code-Projects Online Ordering System 注入漏洞
Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in code-projects Online Ordering System version 1.0, which originates from a SQL injection due to the incorrect operation of the parameter firstname in the file /signup.ph...
Code-Projects Church Donation System 注入漏洞
Code-Projects Church Donation System is an open source church donation system by Code-Projects. An injection vulnerability exists in Code-Projects Church Donation System version 1.0, which stems from an SQL injection attack due to the incorrect operation of the parameter firstname in the file...
CVE-2025-7481
A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /users/profile.php. The manipulation of the argument firstname leads to sql injection. It is possible to initiate the attack remotely. The...
PHPGurukul Vehicle Parking Management System 注入漏洞
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter firstname in the file /users/profile.php that lacks validation of an externally entered SQL statement. An attack...