CVE-2026-2014

A security flaw has been discovered in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /ramonsys/billing/index.php. Performing a manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The exploit has been...

CVE-2025-9419

The CVE concerns itsourcecode Apartment Management System 1.0. The vulnerability is a SQL injection in /unit/addunit.php triggered by manipulating the ID parameter, exploitable remotely, with a publicly available exploit. Impact in the sources ranges from partial to high confidentiality, integrit...

CVE-2025-8374

A vulnerability was found in code-projects Vehicle Management 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /addcompany.php. The manipulation of the argument company leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-8407

A vulnerability, which was classified as critical, has been found in code-projects Vehicle Management 1.0. This issue affects some unknown processing of the file /filter2.php. The manipulation of the argument from leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-8374

A vulnerability was found in code-projects Vehicle Management 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /addcompany.php. The manipulation of the argument company leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-8373

A vulnerability was found in code-projects Vehicle Management 1.0. It has been classified as critical. This affects an unknown part of the file /print.php. The manipulation of the argument sno leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed t...

PT-2025-31551 · Code Projects · Vehicle Management

Name of the Vulnerable Software and Affected Versions: code-projects Vehicle Management version 1.0 Description: A critical vulnerability exists in code-projects Vehicle Management 1.0, specifically within an unknown function of the file /filter1.php. The manipulation of the vehicle argument lead...

CVE-2024-8710

A vulnerability classified as critical was found in code-projects Inventory Management 1.0. Affected by this vulnerability is an unknown functionality of the file /model/viewProduct.php of the component Products Table Page. The manipulation of the argument id leads to sql injection. The attack ca...

CVE-2024-8710 code-projects Inventory Management Products Table Page viewProduct.php sql injection

A vulnerability classified as critical was found in code-projects Inventory Management 1.0. Affected by this vulnerability is an unknown functionality of the file /model/viewProduct.php of the component Products Table Page. The manipulation of the argument id leads to sql injection. The attack ca...

CVE-2024-6471

CVE-2024-6471 affects SourceCodester Online Tours & Travels Management 1.0, specifically the sms_setting.php file. The vulnerability is caused by manipulation of the uname parameter, resulting in an SQL injection that can be exploited remotely. Public disclosures exist, indicating exploitation is...

CVE-2024-5048

A vulnerability classified as critical was found in code-projects Budget Management 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument edit leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2024-5048

The CVE-2024-5048 entry concerns code-projects Budget Management 1.0. The vulnerability is triggered via the /index.php file, where manipulating the edit parameter enables SQL injection. Attackers can exploit remotely, and public disclosures exist (exploit disclosed). The issue is supported by mu...

CVE-2024-34954

Code-projects Budget Management 1.0 is vulnerable to Cross Site Scripting XSS via the budget parameter...

CVE-2024-34955

CVE-2024-34955 affects Code-projects Budget Management 1.0. The vulnerability is SQL Injection via the delete parameter in the application, with a CVSS v3.1 base score of 9.8 (Critical); impact on confidentiality, integrity, and availability is High. Exploitation is possible without authenticatio...

CVE-2024-3433

A vulnerability classified as problematic has been found in PuneethReddyHC Event Management 1.0. Affected is an unknown function of the file /backend/register.php. The manipulation of the argument eventid/fullname/email/mobile/college/branch leads to cross site scripting. It is possible to launch...

CVE-2023-34548

CVE-2023-34548 affects Simple Customer Relationship Management 1.0. The vulnerability is an SQL Injection exposed via the email parameter in the application, with CVSS v3.1 metrics showing a CRITICAL base score (9.8), network attack vector, no privileges, and high impact on confidentiality, integ...

Canteen Management v1.0 - SQL Injection Vulnerability

Exploit Title: Canteen-Management v1.0 - SQL Injection Exploit Author: nu11secur1ty Vendor: https://www.mayurik.com/ Software: https://github.com/nu11secur1ty/CVE-nu11secur1ty/blob/main/vendors/mayurik/2022/Canteen-Management/Docs/youthappam.zip?raw=true Reference:...

Purchase Order Management 1.0 SQL Injection

Title: Purchase Order Management-1.0 - SQLi Author: nu11secur1ty Date: 03.06.2023 Vendor: https://www.sourcecodester.com/user/257130/activity Software: https://www.sourcecodester.com/php/14935/purchase-order-management-system-using-php-free-source-code.html Reference:...

Canteen Management 1.0 2022 SQL Injection Vulnerability

Title: Canteen-Management1.0-2022 SQLi Author: nu11secur1ty Vendor: https://www.mayurik.com/ Software: https://github.com/nu11secur1ty/CVE-nu11secur1ty/blob/main/vendors/mayurik/2022/Canteen-Management/Docs/youthappam.zip?raw=true Reference:...

CVE-2022-30054

In Covid 19 Travel Pass Management 1.0, the code parameter is vulnerable to SQL injection attacks...