2720 matches found
CVE-2025-8233
Code-Projects Online Ordering System 1.0 is affected by a SQL injection in /admin/user.php via the un parameter. The vulnerability arises from improper handling of un, allowing remote exploitation and has publicly disclosed PoCs/exploits reported across multiple sources. Several connected documen...
CVE-2025-8232
A vulnerability, which was classified as critical, was found in code-projects Online Ordering System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-8232
A vulnerability, which was classified as critical, was found in code-projects Online Ordering System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-8232 code-projects Online Ordering System delete_user.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Online Ordering System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-8232 code-projects Online Ordering System delete_user.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Online Ordering System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-8232
CVE-2025-8232 affects code-projects Online Ordering System 1.0. The vulnerability exists in an unknown function of /admin/delete_user.php, where manipulating the ID parameter enables SQL injection. It can be exploited remotely and, according to sources, the exploit has been publicly disclosed. Se...
PT-2025-31006 · Code Projects · Code-Projects Online Ordering System
Name of the Vulnerable Software and Affected Versions: code-projects Online Ordering System version 1.0 Description: A critical vulnerability exists in code-projects Online Ordering System 1.0. The vulnerability is due to a SQL injection flaw within an unknown function of the /admin/delete user.p...
PT-2025-31007 · Code Projects · Code-Projects Online Ordering System
Name of the Vulnerable Software and Affected Versions: code-projects Online Ordering System version 1.0 Description: A critical vulnerability exists due to SQL injection. The vulnerability affects an unknown functionality of the file /admin/user.php. Manipulation of the un argument leads to SQL...
Code-Projects Online Ordering System 注入漏洞
Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in Code-Projects Online Ordering System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter Name in the file /admin/product.php...
Code-Projects Online Ordering System 注入漏洞
Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in Code-Projects Online Ordering System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...
Code-Projects Online Ordering System 注入漏洞
Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in Code-Projects Online Ordering System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file /admin/deleteuser.ph...
Code-Projects Online Ordering System 注入漏洞
Code-Projects Online Ordering System is a Code-Projects open source online ordering system. An injection vulnerability exists in Code-Projects Online Ordering System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter Name in the file...
PT-2025-31012 · Code Projects · Online Ordering System
Name of the Vulnerable Software and Affected Versions: code-projects Online Ordering System version 1.0 Description: A critical issue exists in code-projects Online Ordering System. The vulnerability is due to SQL injection in the /admin/edit product.php file. Manipulation of the Name argument ca...
PT-2025-31009 · Code Projects · Code-Projects Online Ordering System
Name of the Vulnerable Software and Affected Versions: code-projects Online Ordering System version 1.0 Description: A critical issue exists in code-projects Online Ordering System. The vulnerability is due to SQL injection in the /admin/product.php file. The Name argument is susceptible to...
PT-2025-31008 · Code Projects · Code-Projects Online Ordering System
Name of the Vulnerable Software and Affected Versions: code-projects Online Ordering System version 1.0 Description: A vulnerability exists in the Online Ordering System related to SQL injection. The issue is located in the /admin/delete member.php file. Manipulation of the ID argument can lead t...
UBUNTU-CVE-2025-38373
In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix potential deadlock in MR deregistration The issue arises when kzalloc is invoked while holding umemmutex or any other lock acquired under umemmutex. This is problematic because kzalloc can trigger fsreclaimaqcuire,...
CVE-2025-38373
CVE-2025-38373 concerns the Linux kernel’s mlx5_ib MR deregistration deadlock. The description shows a flow where holding the mutex umem_mutex during dereg_mr() can lead kzalloc() to trigger reclaim paths (fs_reclaim, mmu_notifier_invalidate_range_start), which in turn calls mlx5_ib_invalidate_ra...
CVE-2025-38373 IB/mlx5: Fix potential deadlock in MR deregistration
In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix potential deadlock in MR deregistration The issue arises when kzalloc is invoked while holding umemmutex or any other lock acquired under umemmutex. This is problematic because kzalloc can trigger fsreclaimaqcuire,...
CVE-2025-38373
In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix potential deadlock in MR deregistration The issue arises when kzalloc is invoked while holding umemmutex or any other lock acquired under umemmutex. This is problematic because kzalloc can trigger fsreclaimaqcuire,...
Online Ordering System edit_product.php File Upload Vulnerability
Online Ordering System is an online ordering system. A file upload vulnerability exists in Online Ordering System that stems from a lack of valid validation of uploaded files by the parameter image in the file /admin/editproduct.php. No details of the vulnerability are available at this time...