7 matches found
EUVD-2022-50617
Malicious code in bioql PyPI...
Inventory Management System removeProduct.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. The Inventory Management System suffers from a SQL injection vulnerability that originates from the /phpaction/removeProduct.php file not securely filtering the productId parameter. An attacker can exploit this vulnerability to remote...
CVE-2025-6822
CVE-2025-6822 affects code-projects Inventory Management System 1.0, specifically the /php_action/removeProduct.php endpoint. The vulnerability is a SQL injection caused by improper handling of the productId parameter, enabling remote exploitation. Several connected sources corroborate this issue...
CVE-2022-47860
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeProduct.php...
CVE-2022-47860
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeProduct.php...
CVE-2022-47860
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeProduct.php. Root cause: lack of input validation. Impact: potential access to/steal of database data; high severity (CVSS 3.1 base 9.8; Network attack, no auth, no user interaction). Exploitation details are...
CVE-2022-47860
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeProduct.php...