184 matches found
itsourcecode COVID Tracking System SQL注入漏洞
itsourcecode COVID Tracking System is a new coronavirus tracking system open-sourced by itsourcecode. An SQL injection vulnerability exists in version 1.0 of itsourcecode COVID Tracking System, which stems from a misbehavior of the parameter ID by an unknown function in the file...
Online Voting System /ajax.ph File SQL Injection Vulnerability
Online Voting System is an online voting system. Online Voting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /ajax.php. An attacker can exploit this vulnerability to execute illega...
itsourcecode Online Voting System SQL注入漏洞
Online Voting System is an online voting system. Online Voting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /ajax.php. An attacker can exploit this vulnerability to execute illega...
itsourcecode Inventory Management System SQL注入漏洞
itsourcecode Inventory Management System is an inventory management system of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Inventory Management System version 1.0, which originates from a misuse of the parameter ID in file /index.php?q=single-item, which may lead...
CodeAstro Gym Management System SQL注入漏洞
Gym Management System is a gym management system from SourceCodester. A SQL injection vulnerability exists in version 1.0 of the Gym Management System, which stems from incorrect manipulation of the parameter ID in the file /admin/view-member-report.php, which could lead to a SQL injection attack...
SourceCodester Survey Application System SQL注入漏洞
SourceCodester Survey Application System is a SourceCodester open source survey application system. A SQL injection vulnerability exists in SourceCodester Survey Application System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /viewsurvey.php, which can lead...
CVE-2025-12609 CodeAstro Gym Management System update-progress.php sql injection
A vulnerability was found in CodeAstro Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/update-progress.php. Performing a manipulation of the argument id/iniweight results in sql injection. The attack may be initiated remotely. The exploit has bee...
itsourcecode Online Loan Management System SQL注入漏洞
itsourcecode Online Loan Management System is an online loan management system from itsourcecode open source. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Loan Management System, which stems from incorrect manipulation of the parameter ID in the file /manageuser.php,...
CVE-2015-10147
The Easy Testimonial Slider and Form plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...
Code-Projects Nero Social Networking Site SQL注入漏洞
Nero Social Networking Site is a social networking site. Nero Social Networking Site suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /addfriend.php. An attacker can exploit this vulnerability to...
RUET-OJ SQL注入漏洞
RUET-OJ is an online judge platform by the individual developer Ashadullah Shawon. RUET-OJ suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter ID in the file /description.php, which could lead to a SQL injection attack...
EUVD-2018-3614
Malware in sbrugna...
Code-Projects Simple Banking System SQL注入漏洞
Simple Banking System is a simple banking system. Simple Banking System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ID of the file /transfermoney.php. An attacker can exploit this vulnerability to execute...
EUVD-2025-26293
Malicious code in bioql PyPI...
EUVD-2022-28459
Malicious code in bioql PyPI...
Hostel Management System mod_users/index.php File SQL Injection Vulnerability
Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modusers/index.php. An attacker can exploit this...
Projectworlds Online Shopping System SQL注入漏洞
Projectworlds Online Shopping System is an online shopping system from the Austrian company Projectworlds. A SQL injection vulnerability exists in Projectworlds Online Shopping System version 1.0, which stems from a misuse of the parameter ID in the file /store/cartadd.php, which could lead to a...
SourceCodester Pet Grooming Management Software SQL注入漏洞
SourceCodester Pet Grooming Management Software is a SourceCodester open source pet grooming management system. A SQL injection vulnerability exists in SourceCodester Pet Grooming Management Software version 1.0, which stems from incorrect manipulation of the parameter ID in the file...
Hostel Management System mod_comments/index.php File SQL Injection Vulnerability
Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modcomments/index.php. An attacker can use this...
CVE-2025-10841 code-projects Online Bidding System weweee.php sql injection
A security vulnerability has been detected in code-projects Online Bidding System 1.0. This impacts an unknown function of the file /administrator/weweee.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly...