CVE-2025-11118 CodeAstro Student Grading System adminLogin.php sql injection

A vulnerability was identified in CodeAstro Student Grading System 1.0. This issue affects some unknown processing of the file /adminLogin.php. Such manipulation of the argument staffId leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be...

PT-2025-39789

Name of the Vulnerable Software and Affected Versions CodeAstro Student Grading System version 1.0 Description A flaw exists in the processing of the /adminLogin.php file within CodeAstro Student Grading System. Manipulation of the staffId argument can lead to a SQL injection. This issue is...

CodeAstro Student Grading System SQL注入漏洞

CodeAstro Student Grading System is a student grading system from CodeAstro. A SQL injection vulnerability exists in CodeAstro Student Grading System version 1.0, which stems from an incorrect manipulation of the parameter staffId in the file /adminLogin.php, which could lead to a SQL injection...

CVE-2025-10421

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10420

A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-10419

A security vulnerability has been detected in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /delpromote.php. Such manipulation of the argument sy leads to sql injection. The attack can be launched remotely. The exploit has been disclos...

CVE-2025-10418

A weakness has been identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewstudents.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been made availab...

CVE-2025-10409

A weakness has been identified in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /rms.php?page=users. Executing manipulation of the argument fname can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public...

CVE-2025-10408

A security flaw has been discovered in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /edituser.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been release...

CVE-2025-10407

A vulnerability was identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewuser.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly...

CVE-2025-10421

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10421

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10420

A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-10420

A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-10421 SourceCodester Student Grading System update_account.php sql injection

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10421 SourceCodester Student Grading System update_account.php sql injection

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10421

The CVE-2025-10421 entry concerns SourceCodester Student Grading System 1.0. Affected component: the file /update_account.php. Root cause: manipulation of the ID parameter enables SQL injection, with remote exploitation possible and an exploit published. Impact is consistent with the vulnerabilit...

CVE-2025-10420 SourceCodester Student Grading System form137.php sql injection

A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-10420 SourceCodester Student Grading System form137.php sql injection

A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-10420

CVE-2025-10420 affects SourceCodester Student Grading System 1.0; the vulnerability stems from manipulation of the ID parameter in /form137.php, enabling SQL injection. The issue is remote and publicly exploit, as reported across multiple sources. Root cause: unsafely constructed SQL queries usin...