SourceCodester Pharmacy Sales and Inventory System SQL注入漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect...

CVE-2026-3261 itsourcecode School Management System Setting index.php sql injection

A flaw has been found in itsourcecode School Management System 1.0. This impacts an unknown function of the file /settings/index.php of the component Setting Handler. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been published an...

itsourcecode Student Management System SQL注入漏洞

itsourcecode Student Management System is an open-source student management system developed by itsourcecode. Version 1.0 of the itsourcecode Student Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the file...

itsourcecode Student Management System SQL注入漏洞

itsourcecode Student Management System is an open source student management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from incorrect manipulation of the parameter ID in the file /form137.php, which could le...

CVE-2025-14585

CVE-2025-14585 affects itsourcecode COVID Tracking System 1.0. The vulnerability is in the unknown functionality at /admin/?page=zone where manipulating the ID parameter yields SQL injection. Exploitation can be performed remotely, and public exploits exist. Supported sources (NVD, Red Hat, CIRCL...

itsourcecode Online Loan Management System SQL注入漏洞

itsourcecode Online Loan Management System is an open source online loan management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Loan Management System, which stems from incorrect manipulation of the parameter ID in the file...

RUET-OJ SQL注入漏洞

RUET-OJ is an online judge platform by the individual developer Ashadullah Shawon. RUET-OJ suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter ID in the file /details.php, which could lead to a SQL injection attack...

SourceCodester Point of Sales SQL注入漏洞

SourceCodester Point of Sales is an open source point of sale system from SourceCodester. A SQL injection vulnerability exists in SourceCodester Point of Sales version 1.0, which stems from incorrect manipulation of the parameter ID in the file /deletecategory.php, which could lead to a SQL...

EUVD-2018-11243

Malware in sbrugna...

EUVD-2025-24012

Malicious code in bioql PyPI...

EUVD-2025-26655

Malicious code in bioql PyPI...

Online Bidding System weweee.php File SQL Injection Vulnerability

Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from insufficient validation of the parameter ID in the file /administrator/weweee.php. An attacker can use this vulnerability to obtain sensitive information from t...

CampCodes Grocery Sales and Inventory System SQL注入漏洞

CampCodes Grocery Sales and Inventory System is a grocery sales and inventory system from CampCodes Philippines. A SQL injection vulnerability exists in Campcodes Grocery Sales and Inventory System version 1.0, which stems from incorrect manipulation of the parameter ID in file/ajax.php, which...

D-Link DI-8400 yyxz.asp File Stack Buffer Overflow Vulnerability

The D-Link DI-8400 is an enterprise-class Internet behavior management router from D-Link for medium to large enterprise network environments. The D-Link DI-8400 suffers from a stack buffer overflow vulnerability that originates from a stack-based buffer overflow in the parameter ID of the functi...

Apartment Management System add_m_committee.php File SQL Injection Vulnerability

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements for parameter ID in file /management/addmcommittee.php. An attacker can exploit th...

Apartment Management System addcomplain.php File SQL Injection Vulnerability

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /complain/addcomplain.php. An attacker can exploit...

Apartment Management System addunit.php File SQL Injection Vulnerability

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /unit/addunit.php. An attacker can exploit this...

itsourcecode Apartment Management System 安全漏洞

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements for parameter ID in file /management/addmcommittee.php. An attacker can exploit th...

CesiumLab Web 注入漏洞

CesiumLab Web is a geographic information base data processing platform from China Earth Visualization Laboratory CesiumLab Inc. An injection vulnerability exists in CesiumLab Web 4.0 and earlier versions, which stems from a misuse of a parameter ID resulting in SQL injection...

PT-2025-32378 · Unknown · Easy Hosting Control Panel

Name of the Vulnerable Software and Affected Versions: Easy Hosting Control Panel EHCP version 20.04.1.b Description: The Easy Hosting Control Panel EHCP contains a SQL injection issue via the id parameter in the Change Settings function. Recommendations: As a temporary workaround, consider...