16049 matches found
CVE-2025-13561
A vulnerability was determined in SourceCodester Company Website CMS 1.0. This vulnerability affects unknown code of the file /admin/index.php. This manipulation of the argument Username causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed a...
CVE-2025-13561
This CVE concerns SourceCodester Company Website CMS 1.0. The vulnerability exists in the /admin/index.php code where manipulation of the Username parameter enables SQL injection. Remote exploitation is possible, and public exploit disclosure is noted. Multiple connected sources corroborate the i...
CVE-2025-13561 SourceCodester Company Website CMS index.php sql injection
A vulnerability was determined in SourceCodester Company Website CMS 1.0. This vulnerability affects unknown code of the file /admin/index.php. This manipulation of the argument Username causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed a...
CVE-2025-13561 SourceCodester Company Website CMS index.php sql injection
A vulnerability was determined in SourceCodester Company Website CMS 1.0. This vulnerability affects unknown code of the file /admin/index.php. This manipulation of the argument Username causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed a...
CVE-2025-13560
A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/reset-password.php. The manipulation of the argument email results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used...
CVE-2025-13560
A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/reset-password.php. The manipulation of the argument email results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used...
CVE-2025-13560 SourceCodester Company Website CMS reset-password.php sql injection
A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/reset-password.php. The manipulation of the argument email results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used...
CVE-2025-13560
CVE-2025-13560 affects SourceCodester Company Website CMS 1.0. The vulnerability is a SQL injection in the /admin/reset-password.php file triggered by manipulating the email parameter, with remote exploitable conditions and a publicly released exploit. Multiple sources (NVD/Red Hat/CVE records) a...
CVE-2025-13560 SourceCodester Company Website CMS reset-password.php sql injection
A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/reset-password.php. The manipulation of the argument email results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used...
PT-2025-47857
A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...
SourceCodester Company Website CMS SQL注入漏洞
SourceCodester Company Website CMS is a SourceCodester open source content management system. A SQL injection vulnerability exists in SourceCodester Company Website CMS version 1.0, which originates from the incorrect operation of the parameter email in the file /admin/reset-password.php, which m...
SourceCodester Pre-School Management System 安全漏洞
SourceCodester Pre-School Management System is a SourceCodester open source preschool management system. A security vulnerability exists in SourceCodester Pre-School Management System version 1.0, which originates from a misbehavior of the function removefile with respect to the parameter filepat...
PT-2025-47858
A weakness has been identified in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the file /model/user/resetPassword.php. Executing manipulation can lead to weak password recovery. The attack may be performed from remote. The exploit has been made...
SourceCodester Company Website CMS SQL注入漏洞
SourceCodester Company Website CMS is a SourceCodester open source content management system. A SQL injection vulnerability exists in SourceCodester Company Website CMS version 1.0, which originates from the incorrect operation of the parameter Username in the file /admin/index.php, which may lea...
PT-2025-47852
Name of the Vulnerable Software and Affected Versions SourceCodester Company Website CMS version 1.0 Description A SQL injection issue exists due to the manipulation of the email argument in the '/admin/reset-password.php' file. This allows for remote attacks. The exploit has been publicly...
CVE-2025-13468
A weakness has been identified in SourceCodester Alumni Management System 1.0. This issue affects the function deleteforum/deletecareer/deletecomment/deletegallery/deleteevent of the file admin/adminclass.php of the component Delete Handler. Executing manipulation of the argument ID can lead to...
CVE-2025-13450
A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...
CVE-2025-13451
A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...
CVE-2025-13450
A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...
CVE-2025-13451
A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might...