CVE-2026-10225

A vulnerability was detected in raisulislamg4 studentmanagementsystembyphp up to 310d950e09013d5133c6b9210aff9444382d16d1. This issue affects some unknown processing of the file logincheck.php of the component Login. Performing a manipulation of the argument Username results in sql injection. The...

CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

EUVD-2020-18585

Malware in sbrugna...

EUVD-2025-18756

Malicious code in bioql PyPI...

EUVD-2025-16669

Malicious code in bioql PyPI...

EUVD-2023-38544

Malicious code in bioql PyPI...

EUVD-2024-2964

Malicious code in bioql PyPI...

EUVD-2025-23370

Malicious code in bioql PyPI...

EUVD-2025-23284

Malicious code in bioql PyPI...

EUVD-2024-46724

Malicious code in bioql PyPI...

EUVD-2024-27221

Malicious code in bioql PyPI...

PT-2025-40398

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Shopping Portal Project versions 2.1 Description The software is susceptible to a SQL Injection issue. This flaw is located in the /shopping/login.php file and can be triggered through the fullname parameter. Recommendations...

CVE-2025-50868

A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is not properly sanitized before being used in SQL queries...

CVE-2025-50866

CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site Scripting XSS vulnerability in the email parameter of the postquerypublic endpoint. Improper sanitization allows an attacker to inject arbitrary JavaScript code that executes in the context of the user s browser, potentially leading t...

CVE-2025-50867

A SQL Injection vulnerability exists in the takeassessment2.php endpoint of the CloudClassroom-PHP-Project 1.0, where the Q5 POST parameter is directly embedded in SQL statements without sanitization...

CVE-2025-50868

A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is not properly sanitized before being used in SQL queries...

CVE-2025-50868

CVE-2025-50868 affects CloudClassroom-PHP-Project 1.0, specifically the takeassessment2.php file where the Q4 POST parameter is not properly sanitized before being used in SQL queries, enabling SQL injection. The CVSS v3.1 base score is 6.5 (Medium) with low confidentiality/integrity impact and n...

CVE-2025-50868

A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is not properly sanitized before being used in SQL queries...

PT-2025-31658 · Unknown · Cloudclassroom-Php Project

Name of the Vulnerable Software and Affected Versions: CloudClassroom-PHP-Project version 1.0 Description: A SQL Injection issue exists in the takeassessment2.php file. The Q4 POST parameter is not properly sanitized before being used in SQL queries. Recommendations: Ensure proper sanitization of...

CVE-2025-50866

CVE-2025-50866 concerns CloudClassroom-PHP-Project 1.0, which contains a reflected Cross-site Scripting (XSS) vulnerability in the email parameter of the /postquerypublic endpoint. The vulnerability arises from improper sanitization of user-supplied input, allowing an attacker to inject JavaScrip...