Lucene search
K

37 matches found

EUVD
EUVD
added 2026/07/06 12:30 a.m.8 views

EUVD-2026-41786

A vulnerability was found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /payment.php. The manipulation of the argument patientid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References7
NVD
NVD
added 2026/07/05 11:16 p.m.9 views

CVE-2026-14773

A vulnerability was found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /payment.php. The manipulation of the argument patientid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS0.00204EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/05 10:15 p.m.8 views

CVE-2026-14773

A vulnerability was found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /payment.php. The manipulation of the argument patientid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS6.5AI score0.00204EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/07/05 10:15 p.m.28 views

CVE-2026-14773 itsourcecode Hospital Management System payment.php sql injection

A vulnerability was found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /payment.php. The manipulation of the argument patientid results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS0.00204EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/07/05 12:0 a.m.8 views

PT-2026-55830

Name of the Vulnerable Software and Affected Versions itsourcecode Hospital Management System version 1.0 Description A remote SQL injection exists in the /payment.php endpoint. The issue occurs when the patientid argument is manipulated, allowing an attacker to execute arbitrary SQL commands on...

6.5CVSS7AI score0.00204EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.27 views

PT-2026-45402

A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /manage payment.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

7.5CVSS5.7AI score0.00263EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-30543

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.0113EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-16666

Malicious code in bioql PyPI...

9.8CVSS5.4AI score0.00634EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/08/03 2:14 p.m.8 views

CVE-2025-52327

SQL Injection vulnerability in Restaurant Order System 1.0 allows a local attacker to obtain sensitive information via the payment.php file...

7.8CVSS6.9AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/18 1:18 p.m.5 views

CVE-2025-6123

A vulnerability has been found in code-projects Restaurant Order System 1.0 and classified as critical. This vulnerability affects unknown code of the file /payment.php. The manipulation of the argument tabidNoti leads to sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS7.5AI score0.00394EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/16 1:0 p.m.19 views

CVE-2025-6123 code-projects Restaurant Order System payment.php sql injection

A vulnerability has been found in code-projects Restaurant Order System 1.0 and classified as critical. This vulnerability affects unknown code of the file /payment.php. The manipulation of the argument tabidNoti leads to sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00394EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/06/16 12:0 a.m.8 views

PT-2025-25553 · Unknown · Code-Projects Restaurant Order System

Name of the Vulnerable Software and Affected Versions: code-projects Restaurant Order System version 1.0 Description: A critical vulnerability has been found in the code-projects Restaurant Order System, affecting the /payment.php file. The manipulation of the tabidNoti argument leads to SQL...

9.8CVSS7.7AI score0.00394EPSS
Exploits1References13
CNVD
CNVD
added 2025/05/27 12:0 a.m.1 views

CampCodes Sales and Inventory System SQL Injection Vulnerability

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. CampCodes Sales and Inventory System suffers from a SQL injection vulnerability that stems from the improper handling of the cid parameter in the file /pages/payment.php, no details of the vulnerability are...

9.8CVSS8.1AI score0.00445EPSS
Exploits1References1
Snyk
Snyk
added 2025/05/23 1:43 p.m.3 views

Arbitrary File Upload

Overview shopxo/shopxo is an e-commerce system. Affected versions of this package are vulnerable to Arbitrary File Upload via the params argument to the upload function in Payment.php. Remediation There is no fixed version for shopxo/shopxo. References - Vulnerable Code...

9.8CVSS7AI score0.00344EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.7 views

CVE-2024-0884

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function exec of the file payment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

9.8CVSS7.4AI score0.00634EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:44 p.m.6 views

CVE-2021-43631

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the appointmentno parameter in payment.php...

9.8CVSS7.9AI score0.0113EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/21 8:40 p.m.8 views

CVE-2006-3957

PHP remote file inclusion vulnerability in payment.php in BosDev BosDates allows remote attackers to execute arbitrary PHP code via a URL in the insPath parameter...

7.5CVSS7.9AI score0.02474EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/18 12:0 a.m.3 views

PT-2025-21868 · Unknown · Campcodes Sales/Inventory System

Name of the Vulnerable Software and Affected Versions: Campcodes Sales and Inventory System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file /pages/payment.php. The manipulation of the cid argument leads to SQL injection. This issue...

9.8CVSS7.5AI score0.00445EPSS
Exploits1References10
NVD
NVD
added 2024/01/25 9:15 p.m.34 views

CVE-2024-0884

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function exec of the file payment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

9.8CVSS6.2AI score0.00634EPSS
Exploits1References3
Prion
Prion
added 2024/01/25 9:15 p.m.22 views

Sql injection

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function exec of the file payment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

5.8CVSS7.7AI score0.00634EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder