CVE-2025-14221 SourceCodester Online Banking System page cross site scripting

A vulnerability was detected in SourceCodester Online Banking System 1.0. This impacts an unknown function of the file /?page=user. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be launched remotely. The exploit is now public and may be used...

CVE-2025-14221 SourceCodester Online Banking System page cross site scripting

A vulnerability was detected in SourceCodester Online Banking System 1.0. This impacts an unknown function of the file /?page=user. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be launched remotely. The exploit is now public and may be used...

EUVD-2025-201668

A vulnerability was detected in SourceCodester Online Banking System 1.0. This impacts an unknown function of the file /?page=user. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be launched remotely. The exploit is now public and may be used...

CVE-2025-14206

CVE-2025-14206 affects SourceCodester Online Student Clearance System 1.0 in the Fee Table Handler, specifically /Admin/delete-fee.php. Manipulating the ID parameter can lead to improper authorization, with remote exploitation; public exploit details exist. Remediation guidance across connected s...

CVE-2025-13586 SourceCodester Online Student Clearance System changepassword.php sql injection

A flaw has been found in SourceCodester Online Student Clearance System 1.0. Impacted is an unknown function of the file /Admin/changepassword.php. This manipulation of the argument txtconfirmpassword causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-13451

A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...

CVE-2025-13450

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

CVE-2025-13450

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

CVE-2025-13451

A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...

CVE-2025-13450

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

EUVD-2025-198249

A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...

CVE-2025-13451 SourceCodester Online Shop Project action.php sql injection

A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...

CVE-2025-13451 SourceCodester Online Shop Project action.php sql injection

A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...

CVE-2025-13450 SourceCodester Online Shop Project register.php cross site scripting

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

EUVD-2025-198250

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

SourceCodester Online Shop Project 安全漏洞

SourceCodester Online Shop Project is a SourceCodester open source online store project. A security vulnerability exists in SourceCodester Online Shop Project version 1.0, which stems from an incorrect manipulation of the parameter Search in the file /action.php, which could lead to a SQL injecti...

SourceCodester Online Shop Project 安全漏洞

SourceCodester Online Shop Project is a SourceCodester open source online store project. A security vulnerability exists in SourceCodester Online Shop Project version 1.0, which stems from an incorrect manipulation of the parameter fname in the file /shop/register.php, and could lead to a...

PT-2025-47553

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument f name causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed a...

CVE-2025-13264

CVE-2025-13264 affects SourceCodester Online Magazine Management System 1.0, specifically the /view_magazine.php file. The vulnerability arises from manipulating the ID parameter, causing SQL injection. Remote exploitation is possible, and public PoCs exist. Multiple sources confirm the issue and...

CVE-2025-13263

SourceCodester Online Magazine Management System 1.0 contains a SQL injection in /categories.php via the c parameter. The issue is remote and publicly exploitable, with PoC-style exploit references present in the CVE metadata. The vulnerability affects unknown functionality in categories.php, and...