CVE-2025-14565

A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown function of the file /Profilers/SProfile/login1.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed fro...

CVE-2025-14565

The CVE-2025-14565 entry concerns kidaze CourseSelectionSystem. Multiple connected sources confirm a vulnerability in the file /Profilers/SProfile/login1.php where manipulation of the Username argument leads to SQL injection. This affects the system upstream of the commit 42cd892b40a18d50bd4ed190...

CVE-2024-7933

A vulnerability was found in itsourcecode Project Expense Monitoring System 1.0. It has been classified as critical. Affected is an unknown function of the file login1.php of the component Backend Login. The manipulation of the argument user leads to sql injection. It is possible to launch the...

PT-2024-38698 · Unknown · Itsourcecode Project Expense Monitoring System

Name of the Vulnerable Software and Affected Versions: itsourcecode Project Expense Monitoring System version 1.0 Description: A critical issue was found in the Backend Login component of the itsourcecode Project Expense Monitoring System. The manipulation of the user argument in the login1.php...

FSA-017.txt

----------------------------------------------------- Advisory id: FSA:017 Author: Federico Fazzi Date: 15/06/2006, 20:31 Sinthesis: HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities Type: low Product: http://hotplugcms.com/ Patch: unavailable...

CVE-2006-3189

CVE-2006-3189 is an XSS vulnerability in HotPlug CMS 1.0, affecting the file administration/tblcontent/login1.php where an attacker can inject arbitrary script/HTML via the msg parameter. The available sources confirm the presence of a cross-site scripting flaw but do not provide exploit details,...