28 matches found
CVE-2025-15188
A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/search-invoices.php. Executing a manipulation of the argument searchdata can lead to cross site scripting. The attack can be launched remotel...
EUVD-2023-41509
Malicious code in bioql PyPI...
EUVD-2024-32114
Malicious code in bioql PyPI...
EUVD-2022-45162
Malicious code in bioql PyPI...
EUVD-2024-27116
Malicious code in bioql PyPI...
CVE-2025-10825
A vulnerability was identified in Campcodes Online Beauty Parlor Management System 1.0. Affected is an unknown function of the file /admin/view-appointment.php. The manipulation of the argument viewid leads to sql injection. The attack can be initiated remotely. The exploit is publicly available...
Modern Bag product-update.php file SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter idProduct in the file /admin/product-update.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to...
Code-Projects Modern Bag 注入漏洞
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter idSlide in file /admin/slideupdate.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illeg...
Code-Projects Modern Bag 注入漏洞
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter ID in the file /product-detail.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal S...
CVE-2025-6408
CVE-2025-6408 affects Campcodes Online Hospital Management System 1.0. The vulnerability is a SQL injection in /doctor/search.php caused by manipulation of the searchdata parameter. It can be exploited remotely, and public exploit discussion is noted. Impact is described with high/critical covena...
Laundry Management System SQL注入漏洞
Laundry Management System is a laundry management system. A SQL injection vulnerability exists in Online Laundry Management System version 1.0, which originates from an SQL injection vulnerability in the id parameter of the /manageuser.php file...
PT-2023-27925 · Galaxy Software Services · Vitals Esp
Name of the Vulnerable Software and Affected Versions: Galaxy Software Services Corporation Vitals ESP affected versions not specified Description: The issue is related to insufficient filtering and validation during file upload in an online knowledge base management portal. An authenticated remo...
Online Piggery Management System 1.0 Shell Upload
!/bin/bash Exploit Title: Online Piggery Management System v1.0 - unauthenticated file upload vulnerability Date: July 12 2023 Exploit Author: 1337kid Software Link: https://www.sourcecodester.com/php/11814/online-pig-management-system-basic-free-version.html Version: 1.0 Tested on: Ubuntu CVE :...
CVE-2023-37628
Online Piggery Management System 1.0 is vulnerable to SQL Injection...
Sql injection
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/viewtest.php...
CVE-2022-42069
Online Birth Certificate Management System version 1.0 suffers from a persistent Cross Site Scripting XSS vulnerability...
CVE-2022-42070
Online Birth Certificate Management System version 1.0 is vulnerable to Cross Site Request Forgery CSRF...
Online Leave Management System 1.0 - Arbitrary File Upload to Shell (Unauthenticated)
Exploit Title: Online Leave Management System 1.0 - Arbitrary File Upload to Shell Unauthenticated Date: 24-08-2021 Exploit Author: Justin White Vendor Homepage: https://www.sourcecodester.com Software Link:...
Online AgroCulture Farm Management System 1.0 - (pid) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Online AgroCulture Farm Management System 1.0 - 'pid' SQL Injection Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/14198/online-agroculture-farm-management-system-phpmysql.html Software Link:...
Command Execution Vulnerability in Xianqi Kindergarten Online Management System
Xianqi Kindergarten Online Management System is a kindergarten online management system. A code execution vulnerability exists in the CKI Kindergarten Online Management System, which can be exploited by an attacker to gain server privileges...