22 matches found
CVE-2026-3745
A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...
EUVD-2017-8737
Malware in sbrugna...
EUVD-2007-3925
Malware in sbrugna...
EUVD-2021-31801
Malicious code in bioql PyPI...
EUVD-2025-4790
Malicious code in bioql PyPI...
CVE-2025-8985
CVE-2025-8985 affects SourceCodester COVID 19 Testing Management System 1.0. The vulnerability is in /profile.php where manipulating the mobilenumber parameter enables SQL injection, allowing remote access. Exploitation status is documented as a PROOF-OF-CONCEPT in CVSS/4.0 data; no official patc...
CVE-2025-7481 PHPGurukul Vehicle Parking Management System profile.php sql injection
A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /users/profile.php. The manipulation of the argument firstname leads to sql injection. It is possible to initiate the attack remotely. The...
PT-2025-23782 · Unknown · Phpgurukul Dairy Farm Shop Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Dairy Farm Shop Management System version 1.3 Description: A critical issue was found in the PHPGurukul Dairy Farm Shop Management System. The problem is related to an unknown function of the file /profile.php. The manipulation of...
CVE-2023-1909
A vulnerability, which was classified as critical, was found in PHPGurukul BP Monitoring Management System 1.0. Affected is an unknown function of the file profile.php of the component User Profile Update Handler. The manipulation of the argument name/mobno leads to sql injection. It is possible ...
CVE-2021-45003
Laundry Booking Management System 1.0 Latest and previous versions are affected by a remote code execution RCE vulnerability in profile.php through the "image" parameter that can execute a webshell payload...
PT-2025-21629 · Unknown · Phpgurukul Zoo Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Zoo Management System version 2.1 Description: A critical vulnerability was found in PHPGurukul Zoo Management System. The issue affects an unknown functionality of the file /admin/profile.php. The manipulation of the contactnumber...
PT-2025-18272 · Unknown · Phpgurukul Time Table Generator System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Timetable Generator System version 1.0 Description: A Reflected Cross-Site Scripting XSS issue was discovered in the profile.php file. This issue allows remote attackers to execute arbitrary JavaScript code via the adminname...
CVE-2025-2374 PHPGurukul Human Metapneumovirus Testing Management System profile.php sql injection
A vulnerability, which was classified as critical, has been found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument aid/adminname/mobilenumber/email leads to sql injection. The...
CVE-2025-29427
The CVE-2025-29427 entry concerns Code-projects Online Class and Exam Scheduling System V1.0. The vulnerability is a Cross Site Scripting (XSS) flaw in profile.php, triggered by the parameters member_first and member_last. The issue arises from insufficient input handling (lack of proper filterin...
CVE-2025-29427
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting XSS in profile.php via the memberfirst and memberlast parameters...
CVE-2025-1955 code-projects Online Class and Exam Scheduling System profile.php cross site scripting
A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /Scheduling/scheduling/pages/profile.php. The manipulation of the argument username leads to cross site...
Wazifa System profile.php file cross-site scripting vulnerability
Wazifa System is a content management system. Wazifa System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter postcontent in the /profile.php file, which can be exploited to execute arbitrary Web...
CVE-2024-48170
PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting XSS via a crafted payload injected into the name in the profile.php...
CVE-2024-48170
PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting XSS via a crafted payload injected into the name in the profile.php...
CVE-2023-7052
A vulnerability was found in PHPGurukul Online Notes Sharing System 1.0. It has been classified as problematic. This affects an unknown part of the file /user/profile.php. The manipulation of the argument name leads to cross-site request forgery. It is possible to initiate the attack remotely. Th...