Lucene search
K

2729 matches found

RedhatCVE
RedhatCVE
added 2025/12/09 4:30 p.m.11 views

CVE-2025-14250

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...

9.8CVSS7AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 4:30 p.m.11 views

CVE-2025-14251

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...

9.8CVSS7AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 3:15 p.m.4 views

CVE-2025-14249

A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /userschool.php. The manipulation of the argument productid results in sql injection. The attack may be performed from remote. The exploit has been released to...

9.8CVSS6.9AI score0.00326EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-50217

Name of the Vulnerable Software and Affected Versions PCI Express PCIe Integrity and Data Encryption IDE specification affected versions not specified Description The PCI Express PCIe Integrity and Data Encryption IDE specification contains insufficient guidance regarding Transaction Layer Packet...

6.2AI score0.00127EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-49730

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A data race condition exists around dp-dccps mss cache in the Data Communication Channel Protocol DCCP implementation. The dccp sendmsg function and do dccp getsockopt read dp-dccps mss...

6.1AI score0.00216EPSS
Exploits0
EUVD
EUVD
added 2025/12/08 6:30 p.m.6 views

EUVD-2025-201724

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...

7.5CVSS6.5AI score0.00326EPSS
Exploits1References6
EUVD
EUVD
added 2025/12/08 6:30 p.m.6 views

EUVD-2025-201729

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...

7.5CVSS6.4AI score0.00326EPSS
Exploits1References6
NVD
NVD
added 2025/12/08 4:15 p.m.4 views

CVE-2025-14250

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...

9.8CVSS0.00326EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 4:15 p.m.8 views

CVE-2025-14250

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...

9.8CVSS5.8AI score0.00326EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 4:15 p.m.7 views

CVE-2025-14251

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...

9.8CVSS5.7AI score0.00326EPSS
Exploits1References5
NVD
NVD
added 2025/12/08 4:15 p.m.5 views

CVE-2025-14251

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...

9.8CVSS0.00326EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/08 4:2 p.m.3 views

CVE-2025-14251 code-projects Online Ordering System Admin Login admin sql injection

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...

7.5CVSS6.7AI score0.00326EPSS
Exploits1References5
CVE
CVE
added 2025/12/08 4:2 p.m.13 views

CVE-2025-14251

The CVE-2025-14251 entry concerns code-projects Online Ordering System v1.0. A SQL injection vulnerability exists in the Admin Login module, specifically via manipulation of the Username argument in the /admin/ path. The issue is exploitable remotely and is associated with the Admin Login compone...

9.8CVSS6.7AI score0.00326EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/12/08 4:2 p.m.24 views

CVE-2025-14251 code-projects Online Ordering System Admin Login admin sql injection

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit h...

7.5CVSS0.00326EPSS
Exploits1References5
CVE
CVE
added 2025/12/08 3:32 p.m.16 views

CVE-2025-14250

The CVE-2025-14250 entry corresponds to code-projects Online Ordering System 1.0 where the vulnerability originates in the /user_contact.php file, in the Name parameter. Multiple connected sources (CNVD-2026-00521, RH/CVE-2025-14250, CNNVD-202512-957, EUVD-2025-201729, NVD, CVELIST) describe a SQ...

9.8CVSS7.2AI score0.00326EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/08 3:32 p.m.3 views

CVE-2025-14250 code-projects Online Ordering System user_contact.php sql injection

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...

7.5CVSS6.6AI score0.00326EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/12/08 3:32 p.m.20 views

CVE-2025-14250 code-projects Online Ordering System user_contact.php sql injection

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /usercontact.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to...

7.5CVSS0.00326EPSS
Exploits1References5
NVD
NVD
added 2025/12/08 3:15 p.m.7 views

CVE-2025-14249

A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /userschool.php. The manipulation of the argument productid results in sql injection. The attack may be performed from remote. The exploit has been released to...

9.8CVSS0.00326EPSS
Exploits1References5
OSV
OSV
added 2025/12/08 3:15 p.m.6 views

CVE-2025-14249

A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /userschool.php. The manipulation of the argument productid results in sql injection. The attack may be performed from remote. The exploit has been released to...

9.8CVSS5.7AI score0.00326EPSS
Exploits1References5
CVE
CVE
added 2025/12/08 3:2 p.m.14 views

CVE-2025-14249

CVE-2025-14249 corresponds to code-projects Online Ordering System 1.0 and is tied to a SQL injection in the parameter product_id in /user_school.php. The vulnerability arises from lack of input validation, enabling remote exploitation that may disclose or alter database data. Multiple connected ...

9.8CVSS7.2AI score0.00326EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder