64 matches found
SourceCodester Loan Management System 安全漏洞
The SourceCodester Loan Management System is an open-source loan management system developed by SourceCodester. Version 1.0 of the SourceCodester Loan Management System contains a security vulnerability. This vulnerability stems from improper server-side validation, which could allow authenticate...
CVE-2026-30520
A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file specifically the saveloan action. The application fails to properly sanitize user input supplied to the "borrowerid" parameter in a POST request, allowing an...
SourceCodester Loan Management System 安全漏洞
The SourceCodester Loan Management System is an open-source loan management system developed by SourceCodester. Version 1.0 of the SourceCodester Loan Management System has security vulnerabilities. These vulnerabilities stem from defects in the business logic and improper server-side validation,...
CVE-2026-30521
CVE-2026-30521 describes a business-logic vulnerability in SourceCodester Loan Management System v1.0 where backend validation fails to enforce negative values for the field interest_percentage during Loan Plan creation. An authenticated attacker can bypass client-side restrictions by altering th...
CVE-2026-30521
A Business Logic vulnerability exists in SourceCodester Loan Management System v1.0 due to improper server-side validation. The application allows administrators to create "Loan Plans" with specific interest rates. While the frontend interface prevents users from entering negative numbers, this...
CVE-2025-12608
A security flaw has been discovered in itsourcecode Online Loan Management System 1.0. The affected element is an unknown function of the file /manageuser.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has...
CVE-2025-12607
A vulnerability was identified in itsourcecode Online Loan Management System 1.0. Impacted is an unknown function of the file /managepayment.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used...
CVE-2025-12608
A security flaw has been discovered in itsourcecode Online Loan Management System 1.0. The affected element is an unknown function of the file /manageuser.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has...
CVE-2025-12608
A security flaw has been discovered in itsourcecode Online Loan Management System 1.0. The affected element is an unknown function of the file /manageuser.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has...
CVE-2025-12608
CVE-2025-12608 affects itsourcecode Online Loan Management System 1.0. The vulnerability is in an unknown function within /manage_user.php where manipulation of the ID parameter enables SQL injection. The issue is exploitable remotely and the exploit has been released publicly. Multiple connected...
CVE-2025-12608 itsourcecode Online Loan Management System manage_user.php sql injection
A security flaw has been discovered in itsourcecode Online Loan Management System 1.0. The affected element is an unknown function of the file /manageuser.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has...
CVE-2025-12608 itsourcecode Online Loan Management System manage_user.php sql injection
A security flaw has been discovered in itsourcecode Online Loan Management System 1.0. The affected element is an unknown function of the file /manageuser.php. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has...
EUVD-2025-37450
A vulnerability was determined in itsourcecode Online Loan Management System 1.0. This issue affects some unknown processing of the file /manageborrower.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...
CVE-2025-12606
A vulnerability was determined in itsourcecode Online Loan Management System 1.0. This issue affects some unknown processing of the file /manageborrower.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...
CVE-2025-12607 itsourcecode Online Loan Management System manage_payment.php sql injection
A vulnerability was identified in itsourcecode Online Loan Management System 1.0. Impacted is an unknown function of the file /managepayment.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used...
CVE-2025-12606 itsourcecode Online Loan Management System manage_borrower.php sql injection
A vulnerability was determined in itsourcecode Online Loan Management System 1.0. This issue affects some unknown processing of the file /manageborrower.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...
CVE-2025-12605
A vulnerability was found in itsourcecode Online Loan Management System 1.0. This vulnerability affects unknown code of the file /manageloan.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used...
PT-2025-44738
Name of the Vulnerable Software and Affected Versions itsourcecode Online Loan Management System version 1.0 Description A flaw exists in itsourcecode Online Loan Management System that allows for SQL injection. This issue affects an unspecified part of the /load fields.php file. The loan id...
PT-2025-44740
Name of the Vulnerable Software and Affected Versions itsourcecode Online Loan Management System version 1.0 Description A flaw exists in the processing of the /manage borrower.php file within itsourcecode Online Loan Management System. Manipulation of the ID argument can lead to a SQL injection...
Exploit for Injection in Campcodes Online_Loan_Management_System
CVE-2025-9744 PoC This repository contains security resear...