Student Record System register.php File SQL Injection Vulnerability

Student Record System is a software application. Student Record System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter session in the file /register.php. An attacker can exploit this vulnerability to execute...

CVE-2025-6915 PHPGurukul Student Record System register.php sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Student Record System 3.2. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument session leads to sql injection. The attack may be launched remotely. The...

CVE-2025-5650 1000projects Online Notice Board register.php sql injection

A vulnerability classified as critical was found in 1000projects Online Notice Board 1.0. This vulnerability affects unknown code of the file /register.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2025-5650 1000projects Online Notice Board register.php sql injection

A vulnerability classified as critical was found in 1000projects Online Notice Board 1.0. This vulnerability affects unknown code of the file /register.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2025-5583 CodeAstro Real Estate Management System register.php sql injection

A vulnerability classified as critical has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /register.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...

CVE-2025-5583

CVE-2025-5583 affects CodeAstro Real Estate Management System 1.0, with an SQL injection in an unknown function of /register.php. The vulnerability allows remote exploitation and the exploit has been disclosed publicly. Multiple sources (NVD, Red Hat, CVE lists) concur on the existence of this SQ...

CVE-2024-40498

SQL Injection vulnerability in PuneethReddyHC Online Shopping sysstem advanced v.1.0 allows an attacker to execute arbitrary code via the register.php...

CVE-2023-1354

A vulnerability has been found in SourceCodester Design and Implementation of Covid-19 Directory on Vaccination System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file register.php. The manipulation of the argument...

CVE-2022-25114

Event Management v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the fullname parameter under register.php...

CVE-2020-15599

Victor CMS through 2019-02-28 allows XSS via the register.php userfirstname or userlastname field...

CVE-2025-4736 PHPGurukul Daily Expense Tracker register.php sql injection

A vulnerability was found in PHPGurukul Daily Expense Tracker 1.1 and classified as critical. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-4736

The CVE concerns PHPGurukul Daily Expense Tracker 1.1. The vulnerability is a SQL injection in /register.php triggered by manipulating the email parameter, with remote exploitation and a publicly disclosed exploit. No patch/version fix details are provided in the documents. A temporary workaround...

PT-2025-21595 · Unknown · Phpgurukul Daily Expense Tracker

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker version 1.1 Description: A critical issue affects an unknown functionality of the file /register.php. The manipulation of the email argument leads to SQL injection. The attack can be launched remotely. The...

CVE-2025-3489

A vulnerability was found in Nababur Simple-User-Management-System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument name/username leads to cross site scripting. The attack may be launched...

CVE-2025-3489

CVE-2025-3489 affects Nababur Simple-User-Management-System 1.0. The issue is in the file /register.php where manipulation of the name/username argument leads to cross-site scripting. The attack can be launched remotely and the exploit has been publicly disclosed. Multiple sources corroborate the...

CVE-2025-3489 Nababur Simple-User-Management-System register.php cross site scripting

A vulnerability was found in Nababur Simple-User-Management-System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /register.php. The manipulation of the argument name/username leads to cross site scripting. The attack may be launched...

PT-2025-15895 · Unknown · Nababur Simple-User-Management-System

Name of the Vulnerable Software and Affected Versions: Nababur Simple-User-Management-System version 1.0 Description: A vulnerability was found in the file /register.php, where the manipulation of the name/username argument leads to cross-site scripting. The attack may be launched remotely. The...

CVE-2022-21643

USOC is an open source CMS with a focus on simplicity. In affected versions USOC allows for SQL injection via register.php. In particular usernames, email addresses, and passwords provided by the user were not sanitized and were used directly to construct a sql statement. Users are advised to...

CVE-2024-7311

A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file register.php. The manipulation of the argument Email leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-9797

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file register.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed...