CVE-2026-2154 SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System Patient Registration registration.php cross site scripting

A vulnerability was identified in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Impacted is an unknown function of the file /registration.php of the component Patient Registration Module. The manipulation of the argument First Name leads to cross site scripting...

CVE-2025-11582

The CVE-2025-11582 entry maps to concrete details across multiple sources: code-projects Online Job Search Engine 1.0 is affected by a SQL injection in the /registration.php script, via manipulation of the txtusername parameter. This is reported as exploitable remotely with public exploits. The C...

Complaint Management System registration.php file SQL Injection Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements for the fullname, email, and contactno parameters in user/registration.php. An...

Small CRM /registration.php File Cross-Site Scripting Vulnerability

Small CRM is a customer relationship management system. Small CRM suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter Username in the file /registration.php, which can be exploited by an attacker to...

PHPGurukul BP Monitoring Management System 注入漏洞

BP Monitoring Management System is a bp monitoring management system. BP Monitoring Management System suffers from a SQL injection vulnerability that originates from improper filtering of the emailid parameter in the registration.php file. An attacker can exploit this vulnerability by manipulatin...

CVE-2025-4025 itsourcecode Placement Management System registration.php sql injection

A vulnerability classified as critical was found in itsourcecode Placement Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /registration.php. The manipulation of the argument Name leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2023-27459 WordPress User Registration plugin <= 2.3.2.1 - Authenticated PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects User Registration: from n/a through 2.3.2.1...

CVE-2023-50743

Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the registration.php resource does not validate the characters received and they are sent unfiltered to the database...

CVE-2023-46581

SQL injection vulnerability in Inventory Management v.1.0 allows a local attacker to execute arbitrary code via the name, uname and email parameters in the registration.php component...

PT-2023-29137 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue is related to the 'name' parameter of the process registration.php resource, which does not validate the characters received, and they are sent unfiltered to the database...