CVE-2019-25690

Kados R10 GreenBee is affected by an SQL injection vulnerability exposed via the mng_profile_id parameter. The issue allows an attacker to manipulate database queries and potentially extract sensitive data. Root cause is an injection flaw in the handling of mng_profile_id (network-accessible, low...

CVE-2026-3046

A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This vulnerability affects unknown code of the file /checkprofileold.php. The manipulation of the argument profileid leads to sql injection. Remote exploitation of the attack is...

EUVD-2026-7458

A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This vulnerability affects unknown code of the file /checkprofileold.php. The manipulation of the argument profileid leads to sql injection. Remote exploitation of the attack is...

UNA CMS <= 14.0.0-RC4 - PHP Object Injection

The vulnerability is located in the /template/scripts/BxBaseMenuSetAclLevel.php script. Specifically, within the BxBaseMenuSetAclLevel::getCode method. When calling this method, user input passed through the "profileid" POST parameter is not properly sanitized before being used in a call to the...

Projectworlds Gym Management System 安全漏洞

Projectworlds Gym Management System is a gym management system from Projectworlds India. A security vulnerability exists in Projectworlds Gym Management System version 1.0, which stems from an incorrect manipulation of the parameter id in the profile/edit.php page, which could lead to a SQL...

CVE-2025-10670

A flaw has been found in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This issue affects some unknown processing of the file /checkprofile.php. Executing manipulation of the argument profileid can lead to sql injection. It is possible to launch the attack remotely. The...

PT-2025-38401

Name of the Vulnerable Software and Affected Versions itsourcecode E-Logbook with Health Monitoring System for COVID-19 version 1.0 Description A flaw exists in itsourcecode E-Logbook with Health Monitoring System for COVID-19, potentially allowing for SQL injection. The issue is related to the...

PT-2025-38256

Name of the Vulnerable Software and Affected Versions: itsourcecode E-Logbook with Health Monitoring System for COVID-19 version 1.0 Description: A cross-site scripting issue exists due to manipulation of the profile id argument in the /print reports prev.php file. This allows for remote attacks...

CVE-2025-10411 itsourcecode E-Logbook with Health Monitoring System for COVID-19 POST Request check_profile.php cross site scripting

A vulnerability was detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This issue affects some unknown processing of the file /stc-log-keeper/checkprofile.php of the component POST Request Handler. The manipulation of the argument profileid results in cross site...

itsourcecode E-Logbook with Health Monitoring 代码注入漏洞

itsourcecode E-Logbook with Health Monitoring is a itsourcecode open source electronic logbook with health monitoring. A code injection vulnerability exists in itsourcecode E-Logbook with Health Monitoring version 1.0, which originates from a misuse of the parameter profileid in the file...

Open Solutions For Education OpenSis-Classic SQL注入漏洞

openSIS is a free, open source student information system/school management software. A SQL injection vulnerability exists in openSIS version 8.0. The vulnerability stems from a lack of validation of input data for the $GET'usrid' and $GET'profid' parameters in PasswordCheck.php. An attacker can...

CVE-2019-8935

Collabtive 3.1 allows XSS via the manageuser.php?action=profile id parameter...

GLPI Elevation of Privilege Vulnerability

GLPI is an open source IT resource management suite maintained by the Indepnet Association. The suite includes features such as device status management, asset inventory storage, management processes and work log management. A security vulnerability exists in GLPI 0.85.2 and earlier versions. The...