CVE-2025-9726

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /review.php. The manipulation of the argument pid results in sql injection. The attack may be launched remotely. The exploit has been released to the...

CVE-2025-9726 Campcodes Farm Management System review.php sql injection

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /review.php. The manipulation of the argument pid results in sql injection. The attack may be launched remotely. The exploit has been released to the...

CVE-2021-39413

Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...

CVE-2021-39413

Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...

Online AgroCulture Farm Management System 1.0 - (pid) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Online AgroCulture Farm Management System 1.0 - 'pid' SQL Injection Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/14198/online-agroculture-farm-management-system-phpmysql.html Software Link:...

wheretoeatuk.com XSS vulnerability

Open Bug Bounty ID: OBB-531303 Description| Value ---|--- Affected Website:| wheretoeatuk.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2017-17928

PHP Scripts Mall Professional Service Script has SQL injection via the admin/review.php id parameter...

CVE-2017-17928

PHP Scripts Mall Professional Service Script has SQL injection via the admin/review.php id parameter...

kunsten.nl XSS vulnerability

Vulnerable URL: http://www.kunsten.nl/review.php?tab=add=%22%3E%3Cimg%20src=x%20onerror=prompt%27OPENBUGBOUNTY%27%3E Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 10:22 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

WebSkinz SQL Injection

Exploit Title: WebSkinz Sql Injection Vulnerability Date: 24.10.2011 - 23:30 Author: 3spi0n Software Website: http://www.webskinz.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Review.php $ Dorks: "DESIGNED & PROGRAMMED WEBSKINZ" $ Demo Sites:...

Nafis Group SQL Injection

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Nafis Group review.php?ID AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Persian Gulf 4 Ever! Dork : "Powered by : Nafis Group" Exploite: www.victim.com/review.php?ID=SQL SpeCial TanX To :...

Sql injection

SQL injection vulnerability in review.php in MYRE Holiday Rental Manager allows remote attackers to execute arbitrary SQL commands via the linkid parameter in a showreview action...

CVE-2009-4615

SQL injection vulnerability in review.php in MYRE Holiday Rental Manager allows remote attackers to execute arbitrary SQL commands via the linkid parameter in a showreview action...

CVE-2009-4615

CVE-2009-4615 affects MYRE Holiday Rental Manager (review.php) via the show_review action, where the link_id parameter is vulnerable to SQL injection due to unsanitized input. Root cause: improper handling of user-supplied data in a SQL context. Impact: allows remote attackers to execute arbitrar...

CVE-2005-0896

Multiple cross-site scripting XSS vulnerabilities in review.php in phpMyDirectory 10.1.3-rel allow remote attackers to inject arbitrary web script or HTML via the 1 subcat, 2 page, or 3 subsubcat parameter...