EUVD-2026-31568

A vulnerability has been found in SourceCodester Hospitals Patient Records Management System 1.0. This affects an unknown function of the file /admin/patients/managehistory.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has...

CVE-2025-7601 PHPGurukul Online Library Management System student-history.php cross site scripting

A vulnerability has been found in PHPGurukul Online Library Management System 3.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/student-history.php. The manipulation of the argument stdid leads to cross site scripting. The attack can be initiated...

CVE-2025-7601

PHPGurukul Online Library Management System v3.0 has a cross-site scripting (XSS) flaw in /admin/student-history.php where the stdid parameter is not properly sanitized. Exploitation can be performed remotely and the vulnerability has been publicly disclosed. The issue stems from unsafely handlin...

CVE-2025-7600

Summary (concrete details): PHPGurukul Online Library Management System 3.0 contains a SQL injection in the admin-side file /admin/student-history.php via the vulnerable parameter stdid . The issue arises from unsanitized user input, enabling remote exploitation and data theft. Multiple sources c...

CVE-2025-7600 PHPGurukul Online Library Management System student-history.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Online Library Management System 3.0. This affects an unknown part of the file /admin/student-history.php. The manipulation of the argument stdid leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-5359 Campcodes Online Hospital Management System appointment-history.php sql injection

A vulnerability classified as critical has been found in Campcodes Online Hospital Management System 1.0. This affects an unknown part of the file /appointment-history.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2024-30863

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php...

CVE-2022-36722

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the title parameter at /librarian/history.php...

WordPress plugin CLEVER 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

CVE-2024-30863

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php...

CVE-2024-30863

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php...

CVE-2022-36722

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the title parameter at /librarian/history.php...

CVE-2022-36722

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the title parameter at /librarian/history.php...

Cross site scripting

PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...

CVE-2020-22169

CVE-2020-22169 affects PHPGurukul Hospital Management System v4.0. The vulnerability is a SQL injection in hms/appointment-history.php that can be exploited remotely by unauthenticated users to obtain sensitive database information. Underlying cause is improper handling of user-supplied input in ...

PT-2021-10734 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: The issue concerns a SQL injection vulnerability located in the hmsappointment-history.php file. This vulnerability can be exploited by remote unauthenticated users to obtain...

turismo.comune.palermo.it XSS vulnerability

Open Bug Bounty ID: OBB-596499 Description| Value ---|--- Affected Website:| turismo.comune.palermo.it Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

NS_ASG 6.3 /history.php SQL注入漏洞

No description provided by source...

CVE-2012-5315

Multiple cross-site scripting XSS vulnerabilities in php ireport 1.0 allow remote attackers to inject arbitrary web script or HTML via the message parameter to 1 messagesviewer.php, 2 home.php, or 3 history.php...

PHP iReport 1.0 - Remote Html Code Injection

PHP iReport 1.0 - Remote Html Code Injection !/usr/bin/perl Title = phpireport v1.0 = Remote Html Code injection Author = Or4nG.M4n Download = http://garr.dl.sourceforge.net/project/phpireport/phpireport%20v1.0%20alpha%20revision%2025.rar Thnks : +----------------------------------+ | xSs m4n i-H...