Online Farm System /forgot_pass.php File SQL Injection Vulnerability

Online Farm System is an online farm system. Online Farm System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /forgotpass.php. An attacker can exploit this vulnerability to execute illeg...

CVE-2025-8331

A vulnerability was found in code-projects Online Farm System 1.0 and classified as critical. This issue affects some unknown processing of the file /forgotpass.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed...

CVE-2025-8331 code-projects Online Farm System forgot_pass.php sql injection

A vulnerability was found in code-projects Online Farm System 1.0 and classified as critical. This issue affects some unknown processing of the file /forgotpass.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed...

CVE-2025-8331

CVE-2025-8331 affects code-projects Online Farm System 1.0. The vulnerability is in the /forgot_pass.php handling of the email parameter, where unsafely processed input enables SQL injection. The issue is exploitable remotely and is described as critical by the primary sources; multiple connected...

code-projects Online Farm System 安全漏洞

Online Farm System is an online farm system. Online Farm System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /forgotpass.php. An attacker can exploit this vulnerability to execute illeg...

CVE-2024-9296

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /control/forgotpass.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotel...

CVE-2024-9296 SourceCodester Advocate Office Management System forgot_pass.php sql injection

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /control/forgotpass.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotel...

Free File Hosting <= 1.1 (forgot_pass.php) File Include Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' | \\ | \\ | \ . . |\ \ \ /\ \ / /| || | | | | \ | \ Y / | || | | \ | \ \ / | || | |/ // / / ||| \ | / / \ / \ |\ /\ / / \ / \ | | | | / /\ \ / \ / \ | | | | / | / Y \ || / /| /| /...

CubeCart 3.0.x admin/forgot_pass.php user_name Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20215/info CubeCart is prone to multiple input-validation vulnerabilities, including information-disclosure, cross-site scripting, and SQL-injection issues, because the application fails to properly sanitize user-supplied...

Free File Hosting forgot_pass.php AD_BODY_TEMP Parameter PHP Code Execution - Ver2 (CVE-2006-5762)

A code execution vulnerability has been reported in Free File Hosting. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2006-5107

Multiple SQL injection vulnerabilities in Devellion CubeCart 2.0.x allow remote attackers to execute arbitrary SQL commands via 1 the username parameter in admin/forgotpass.php, 2 the orderid parameter in vieworder.php, 3 the viewdoc parameter in viewdoc.php, and 4 the orderid parameter in...