CVE-2025-13395 codehub666 94list function.php login sql injection

A security flaw has been discovered in codehub666 94list up to 5831c8240e99a72b7d3508c79ef46ae4b96befe8. The impacted element is the function Login of the file /function.php. The manipulation results in sql injection. The attack can be launched remotely. The exploit has been released to the publi...

PT-2025-47451

Name of the Vulnerable Software and Affected Versions codehub666 94list affected versions not specified Description A security flaw exists in codehub666 94list. The issue involves a SQL injection impacting the Login function within the /function.php file. This allows for remote exploitation. The...

CVE-2025-11479

A security vulnerability has been detected in SourceCodester Wedding Reservation Management System 1.0. Impacted is the function insertReservation of the file function.php. Such manipulation of the argument number leads to sql injection. The attack can be executed remotely. The exploit has been...

EUVD-2023-50214

Malicious code in bioql PyPI...

CVE-2023-45951

lylmespage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip parameter at function.php...

CVE-2018-6357

The acxasmwsaveordercallback function in function.php in the acurax-social-media-widget plugin before 3.2.6 for WordPress has CSRF via the recordsArray parameter to wp-admin/admin-ajax.php, with resultant socialwidgeticonarrayorder XSS...

CVE-2010-2012

SQL injection vulnerability in function.php in MigasCMS 1.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the categorie parameter in a catalogo action. NOTE: some of these details are obtained from third party information...

CVE-2024-44821

ZZCMS 2023 contains a vulnerability in the captcha reuse logic located in /inc/function.php. The checkyzm function does not properly refresh the captcha value after a failed validation attempt. As a result, an attacker can exploit this flaw by repeatedly submitting the same incorrect captcha...

CVE-2024-44821

ZZCMS 2023 contains a vulnerability in the captcha reuse logic located in /inc/function.php. The checkyzm function does not properly refresh the captcha value after a failed validation attempt. As a result, an attacker can exploit this flaw by repeatedly submitting the same incorrect captcha...

CVE-2024-44821

ZZCMS 2023 contains a vulnerability in the captcha reuse logic in /inc/function.php. The checkyzm function does not properly refresh the captcha value after a failed validation, enabling an attacker to repeatedly submit the same incorrect captcha and potentially infer the correct value via error ...

CVE-2024-44821

ZZCMS 2023 contains a vulnerability in the captcha reuse logic located in /inc/function.php. The checkyzm function does not properly refresh the captcha value after a failed validation attempt. As a result, an attacker can exploit this flaw by repeatedly submitting the same incorrect captcha...

CVE-2024-4595 SEMCMS function.php locate sql injection

A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is the function locate of the file function.php. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

CVE-2024-4595 SEMCMS function.php locate sql injection

A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is the function locate of the file function.php. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

CVE-2023-45951

lylmespage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip parameter at function.php...

CVE-2023-45951

lylmespage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip parameter at function.php...

Sql injection

lylmespage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip parameter at function.php...

LyLme Spage SQL Injection Vulnerability

LyLme Spage six zero navigation page is China's six zero LyLme open source a navigation page . Committed to simple and efficient advertising-free Internet navigation and search portal , support for background links , custom search engine , precipitation of the most valuable links , no commercial...

PT-2023-29770 · Unknown · Lylme Spage

Name of the Vulnerable Software and Affected Versions: lylme spage version 1.7.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the $userip parameter at function.php. Recommendations: For lylme spage version 1.7.0, consider restricting...

CVE-2023-45951

lylmespage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip parameter at function.php...

Sql injection

A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been rated as critical. Affected by this issue is the function deleterecord of the file function.php. The manipulation of the argument id leads to sql injection. VDB-220346 is the identifier assigned to this...