5 matches found
CVE-2026-3171
A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /queue.php. This manipulation of the argument firstname/lastname causes cross site scripting. The attack is possible to b...
CVE-2026-3171
A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /queue.php. This manipulation of the argument firstname/lastname causes cross site scripting. The attack is possible to b...
CVE-2025-15052
A vulnerability was detected in code-projects Student Information System 1.0. This vulnerability affects unknown code of the file /profile.php. Performing manipulation of the argument firstname/lastname results in cross site scripting. The attack is possible to be carried out remotely. The exploi...
CVE-2025-9503
This CVE records a SQL injection in Campcodes Online Loan Management System 1.0, specifically in an unknown function of /ajax.php?action=save_borrower where manipulating the lastname parameter can trigger exploitation. The vulnerability enables remote execution and has publicly disclosed exploits...
dwc_network_server_emulator SQL注入漏洞
dwcnetworkserveremulator is a Nintendo DS and Wii online multiplayer server emulator by barronwaffles individual developer. An SQL injection vulnerability exists in dwcnetworkserveremulator, which stems from a problem with the function updateprofile in the file gamespy/gsdatabase.py, where...