CVE-2026-2083 code-projects Social Networking Site delete_post.php sql injection

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /deletepost.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to th...

CVE-2025-13575

A security vulnerability has been detected in code-projects Blog Site 1.0. Impacted is the function categoryexists of the file /resources/functions/blog.php of the component Category Handler. Such manipulation of the argument name/field leads to sql injection. The attack may be performed from...

CVE-2025-13576

A vulnerability was detected in code-projects Blog Site 1.0. The affected element is an unknown function of the file /admin.php. Performing manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit is now public and may be used. Multiple endpoints...

CVE-2025-12308

A security flaw has been discovered in code-projects Nero Social Networking Site 1.0. Affected by this issue is some unknown functionality of the file /deletemessage.php. Performing manipulation of the argument messageid results in sql injection. It is possible to initiate the attack remotely. Th...

CVE-2025-12307

Nero Social Networking Site 1.0 contains a SQL injection in /addfriend.php triggered by manipulating the ID parameter. The vulnerability is exploitable remotely, with publicly available PoCs. CNVD/CNNVD/Red Hat and related entries describe exploitation that can lead to unauthorized database acces...

PT-2025-44017

Name of the Vulnerable Software and Affected Versions Nero Social Networking Site version 1.0 Description A security flaw exists in the /deletemessage.php file of Nero Social Networking Site. Manipulation of the message id argument can lead to SQL injection. This issue can be exploited remotely...

EUVD-2022-25247

Malicious code in bioql PyPI...

EUVD-2025-24152

Malicious code in bioql PyPI...

EUVD-2025-19432

Malicious code in bioql PyPI...

CVE-2025-8859

A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Module. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit...

Code-Projects Food Distributor Site 注入漏洞

Code-Projects Food Distributor Site is a Code-Projects open source food distributor site. Code-Projects Food Distributor Site version 1.0 suffers from an injection vulnerability that stems from improper manipulation of the parameter Username in the file /admin/login.php, which could lead to a SQL...

CVE-2025-6777

A vulnerability, which was classified as critical, has been found in code-projects Food Distributor Site 1.0. This issue affects some unknown processing of the file /admin/processlogin.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated...

CVE-2024-11963

CVE-2024-11963 affects code-projects Responsive Hotel Site 1.0. The vulnerability is a SQL injection in the /admin/room.php file caused by improper handling of the troom parameter, which can be exploited remotely. Multiple sources describe an attacker manipulating troom to execute SQL commands an...

CVE-2024-9009

CVE-2024-9009 affects code-projects Online Quiz Site 1.0; the vulnerability is in showtest.php where the subid parameter is manipulated to cause SQL injection. Root cause is unsafe handling of user input in subid, enabling remote exploitation with potential impact on confidentiality, integrity, a...

CVE-2024-8222

A vulnerability classified as critical has been found in SourceCodester Music Gallery Site 1.0. This affects an unknown part of the file /admin/?page=musics/managemusic. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2024-8223

CVE-2024-8223 affects SourceCodester Music Gallery Site 1.0. The vulnerability exists in the file /classes/Master.php?f=delete_category where the manipulation of the argument id leads to an SQL injection. The issue is exploitable remotely and the exploit has been disclosed publicly. Impact detail...

CVE-2024-8219

A vulnerability was found in code-projects Responsive Hotel Site 1.0. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument name/phone/email leads to sql injection. It is possible to launch the attack remotely. The exploit has...

CVE-2024-8221

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/categories/managecategory.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-8221

CVE-2024-8221 affects SourceCodester Music Gallery Site 1.0. The vulnerability is an SQL injection in the /admin/categories/manage_category.php file caused by manipulating the id parameter. It is exploitable remotely and is described as critical in multiple sources. Some documents also suggest a ...

Blog Site 1.0 SQL Injection

Titles: blog-site-1.0 Multiple-SQLi Author: nu11secur1ty Date: 07/29/2024 Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/14442/blog-site-using-phpmysql.html Reference: https://portswigger.net/web-security/sql-injection Description: The id parameter appears to be...