CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

RedhatCVE•added 2025/05/22 3:58 p.m.•4 views

CVE-2020-25955

SourceCodester Student Management System Project in PHP version 1.0 is vulnerable to stored a cross-site scripting XSS via the 'add subject' tab...

5.4CVSS5.7AI score0.00492EPSS

Exploits2

RedhatCVE•added 2025/05/22 3:22 p.m.•2 views

CVE-2020-25409

Projectsworlds College Management System Php 1.0 is vulnerable to SQL injection issues over multiple parameters...

9.8CVSS8AI score0.00683EPSS

Exploits0

Cvelist•added 2024/05/30 4:0 p.m.•17 views

CVE-2024-5519 ItsourceCode Learning Management System Project In PHP login.php sql injection

A vulnerability classified as critical was found in ItsourceCode Learning Management System Project In PHP 1.0. This vulnerability affects unknown code of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be initiated remotely. The exploit has...

7.5CVSS7.6AI score0.00136EPSS

Exploits1References4

0day.today•added 2024/04/02 12:0 a.m.•328 views

Online Hotel Booking In PHP 1.0 - Blind SQL Injection (Unauthenticated) Exploit

Exploit Title: Online Hotel Booking In PHP 1.0 - Blind SQL Injection Unauthenticated Exploit Author: Gian Paris C. Agsam Vendor Homepage: https://github.com/projectworldsofficial Software Link: https://projectworlds.in/wp-content/uploads/2019/06/hotel-booking.zip Version: 1.0 Tested on:...

7.4AI score

Exploits0

OSV•added 2024/03/13 9:15 p.m.•0 views

CVE-2023-41504

SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function...

8.8CVSS6AI score0.00118EPSS

Exploits1References1

NVD•added 2024/03/13 9:15 p.m.•11 views

CVE-2023-41504

SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function...

8.8CVSS8.1AI score0.00118EPSS

Exploits1References1

Prion•added 2024/03/13 9:15 p.m.•8 views

Sql injection

SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function...

8.8AI score0.00118EPSS

Exploits1References1

Vulnrichment•added 2024/03/13 12:0 a.m.•7 views

CVE-2023-41504

SQL Injection vulnerability in Student Enrollment In PHP 1.0 allows attackers to run arbitrary code via the Student Search function...

8.5AI score0.00118EPSS

Exploits1References1

Prion•added 2023/07/27 12:15 p.m.•14 views

Cross site scripting

A vulnerability, which was classified as problematic, has been found in GZ Scripts Availability Booking Calendar PHP 1.0. Affected by this issue is some unknown functionality of the file index.php of the component HTTP POST Request Handler. The manipulation of the argument promocode leads to cros...

4CVSS5.3AI score0.00088EPSS

Exploits1References3Affected Software1

CVE•added 2023/07/27 11:31 a.m.•56 views

CVE-2023-3969

CVE-2023-3969 affects GZ Scripts Availability Booking Calendar PHP 1.0. The vulnerability lies in the HTTP POST Request Handler (index.php) where manipulation of the promo_code argument enables cross-site scripting. Exploitation is described as remote with the public disclosure of the exploit. Af...

5.4CVSS4.6AI score0.00088EPSS

Exploits1References3Affected Software1

Prion•added 2023/02/27 4:15 p.m.•14 views

Sql injection

Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the username parameter in the Admin Login...

7.5CVSS9.8AI score0.0084EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/02/27 12:0 a.m.•16 views

CVE-2023-23156

Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the pid parameter in the single-product page...

10AI score0.03654EPSS

Exploits3References3

Cvelist•added 2023/02/27 12:0 a.m.•13 views

CVE-2023-23155

Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the username parameter in the Admin Login...

10AI score0.0084EPSS

Exploits1References3

Cvelist•added 2022/05/31 11:38 p.m.•13 views

CVE-2021-44095

A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database...

9.8AI score0.00601EPSS

Exploits1References3

Prion•added 2022/01/23 5:15 p.m.•17 views

Sql injection

Projectworlds online-shopping-webvsite-in-php 1.0 suffers from a SQL Injection vulnerability via the "id" parameter in cartadd.php, No login is required...

7.5CVSS9.7AI score0.00245EPSS

Exploits1References1Affected Software1

0day.today•added 2022/01/05 12:0 a.m.•229 views

Library System in PHP 1.0 - (publisher name) Stored Cross-Site Scripting Vulnerability

Exploit Title: Library System in PHP 1.0 - 'publisher name' Stored Cross-Site Scripting XSS Exploit Author: Akash Rajendra Patil Vendor Homepage: https://www.yahoobaba.net/project/library-system-in-php Software Link: https://www.yahoobaba.net/project/library-system-in-php Version: V 1.0 Tested on...

7.4AI score

Exploits0

NVD•added 2021/12/22 6:15 p.m.•10 views

CVE-2021-43157

Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter in cartremove.php...

9.8CVSS0.00286EPSS

Exploits1References2

Prion•added 2021/12/22 6:15 p.m.•11 views

Cross site request forgery (csrf)

In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admindelete.php allows a remote attacker to delete any book...

4.3CVSS6.5AI score0.00138EPSS

Exploits1References1Affected Software1