237 matches found
CVE-2025-6473 code-projects School Fees Payment System fees.php cross site scripting
A vulnerability, which was classified as problematic, was found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /fees.php. The manipulation of the argument transcationremark leads to cross site scripting. It is possible to initiate the attack remotely. Th...
Code-Projects School Fees Payment System 代码注入漏洞
School Fees Payment System is a tuition payment system. School Fees Payment System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter translationremark in the file /fees.php, which can be exploited ...
CVE-2025-6403
A vulnerability was found in code-projects School Fees Payment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2025-6403 code-projects School Fees Payment System student.php sql injection
A vulnerability was found in code-projects School Fees Payment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2025-6403 code-projects School Fees Payment System student.php sql injection
A vulnerability was found in code-projects School Fees Payment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2025-6403
Code-Projects School Fees Payment System 1.0 is affected by a SQL injection in /student.php via the ID parameter. The root cause is improper handling of the ID argument, enabling remote attackers to manipulate SQL commands, potentially leading to data theft or modification. Several connected sour...
CVE-2025-6340
A vulnerability classified as problematic has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument Branch/Address/Detail leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2025-6341
A vulnerability classified as problematic was found in code-projects School Fees Payment System 1.0. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-6341 code-projects School Fees Payment System cross-site request forgery
A vulnerability classified as problematic was found in code-projects School Fees Payment System 1.0. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-6341 code-projects School Fees Payment System cross-site request forgery
A vulnerability classified as problematic was found in code-projects School Fees Payment System 1.0. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-6341
The CVE-2025-6341 entry concerns code-projects School Fees Payment System 1.0, a web application vulnerability leading to cross-site request forgery. Reports across multiple sources (NVD, Red Hat, CNVD, CNVD CNVD, PT Security) describe a CSRF issue arising from insufficient validation of requests...
CVE-2025-6340 code-projects School Fees Payment System branch.php cross site scripting
A vulnerability classified as problematic has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument Branch/Address/Detail leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2025-6340
CVE-2025-6340 affects code-projects School Fees Payment System 1.0. The vulnerability is a cross-site scripting flaw in the /branch.php file, triggered by manipulating the Branch/Address/Detail parameter. It can be exploited remotely and exploit code has been publicly disclosed. Affected componen...
CVE-2025-6340 code-projects School Fees Payment System branch.php cross site scripting
A vulnerability classified as problematic has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument Branch/Address/Detail leads to cross site scripting. It is possible to initiate the attack remotely. The...
PT-2025-26309 · Unknown · Code-Projects School Fees Payment System
Name of the Vulnerable Software and Affected Versions: code-projects School Fees Payment System version 1.0 Description: A problematic vulnerability has been found in the code-projects School Fees Payment System. This issue affects an unknown part of the file /branch.php. The manipulation of the...
School Fees Payment System Improper Authentication Vulnerability
School Fees Payment System is a tuition payment system. The School Fees Payment System has an improper authentication vulnerability that can be exploited by an attacker to compromise confidentiality, integrity, and availability...
CVE-2025-5985
A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication. The attack may be launched remotely. The exploit has been disclosed to the public and may ...
CVE-2025-5977
A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /datatable.php. The manipulation of the argument sSortDir0 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2025-5971
A vulnerability was found in code-projects School Fees Payment System 1.0. It has been classified as critical. This affects an unknown part of the file /ajx.php. The manipulation of the argument namestartsWith leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
CVE-2025-5985
A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication. The attack may be launched remotely. The exploit has been disclosed to the public and may ...