Code-Projects Online Note Sharing 注入漏洞

Code-Projects Online Note Sharing is an online note sharing software from Code-Projects open source. Code-Projects Online Note Sharing version 1.0 suffers from an injection vulnerability, which stems from an incorrect manipulation of the parameters username/password in the file /login.php resulti...

PT-2025-28661 · Unknown · Code-Projects Student Enrollment System

Name of the Vulnerable Software and Affected Versions: code-projects Student Enrollment System version 1.0 Description: A critical issue has been found in the code-projects Student Enrollment System, affecting the /login.php file. The manipulation of the Username argument leads to a SQL injection...

PT-2025-28267 · Unknown · Codeastro Patient Record Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Patient Record Management System version 1.0 Description: A critical issue has been discovered, affecting an unknown functionality of the file /login.php. The manipulation of the uname argument leads to SQL injection. This issue can...

CodeAstro Patient Record Management System 注入漏洞

CodeAstro Patient Record Management System is a patient record management system from CodeAstro. An injection vulnerability exists in CodeAstro Patient Record Management System version 1.0, which results from SQL injection due to incorrect manipulation of the parameter uname in the file /login.ph...

CVE-2025-6906 code-projects Car Rental System login.php sql injection

A vulnerability classified as critical has been found in code-projects Car Rental System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument uname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-6906 code-projects Car Rental System login.php sql injection

A vulnerability classified as critical has been found in code-projects Car Rental System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument uname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-6889

A vulnerability was found in code-projects Movie Ticketing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /logIn.php. The manipulation of the argument postName leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-6889 code-projects Movie Ticketing System logIn.php sql injection

A vulnerability was found in code-projects Movie Ticketing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /logIn.php. The manipulation of the argument postName leads to sql injection. The attack can be initiated remotely. The exploit has been...

PT-2025-27439 · Unknown · Code-Projects Car Rental System

Name of the Vulnerable Software and Affected Versions: code-projects Car Rental System version 1.0 Description: A critical issue has been discovered, affecting the /login.php file. The manipulation of the uname argument leads to SQL injection. This issue can be exploited remotely. Recommendations...

CVE-2025-6871

A vulnerability classified as critical has been found in SourceCodester Simple Company Website 1.0. This affects an unknown part of the file /classes/Login.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2023-44915

A cross-site scripting XSS vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the loginerror parameter...

CVE-2023-44915

A cross-site scripting XSS vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the loginerror parameter...

CVE-2023-44915

A cross-site scripting XSS vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the loginerror parameter...

c3crm 跨站脚本漏洞

c3crm is a CRM software by dfar2008 individual developer. A security vulnerability exists in c3crm 3.0.4 and earlier versions, which stems from an unvalidated input of the loginerror parameter in the component/Login.php, which could lead to a cross-site scripting attack...

CVE-2025-6407

A vulnerability, which was classified as critical, was found in Campcodes Online Hospital Management System 1.0. This affects an unknown part of the file /user-login.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit...

CVE-2025-6467 code-projects Online Bidding System login.php sql injection

A vulnerability was found in code-projects Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /login.php. The manipulation of the argument User leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclos...

CVE-2025-6407 Campcodes Online Hospital Management System user-login.php sql injection

A vulnerability, which was classified as critical, was found in Campcodes Online Hospital Management System 1.0. This affects an unknown part of the file /user-login.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit...

CVE-2025-6407 Campcodes Online Hospital Management System user-login.php sql injection

A vulnerability, which was classified as critical, was found in Campcodes Online Hospital Management System 1.0. This affects an unknown part of the file /user-login.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit...

CVE-2025-5716 SourceCodester Open Source Clinic Management System login.php sql injection

A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. Affected is an unknown function of the file /login.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-5604

A vulnerability was found in Campcodes Hospital Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user-login.php. The manipulation of the argument Username leads to sql injection. The attack may be launched remotely. The exploit ha...