CVE-2025-11473

CVE-2025-11473 affects SourceCodester Hotel and Lodge Management System 1.0, with the vulnerable component in the file /edit_curr.php where improper handling of the currsymbol parameter enables SQL injection. The vulnerability is described as remotely exploitable, with public exploit information ...

CVE-2025-11472 SourceCodester Hotel and Lodge Management System edit_room.php sql injection

A flaw has been found in SourceCodester Hotel and Lodge Management System 1.0. This impacts an unknown function of the file /editroom.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

CVE-2025-11472

CVE-2025-11472 affects SourceCodester Hotel and Lodge Management System 1.0. The vulnerability is a SQL injection in the /edit_room.php script caused by improper handling of the ID parameter, enabling remote exploitation. Exploit unreliable/unconfirmed details are not provided beyond the claim th...

CVE-2025-11471 SourceCodester Hotel and Lodge Management System edit_customer.php sql injection

A vulnerability was detected in SourceCodester Hotel and Lodge Management System 1.0. This affects an unknown function of the file /editcustomer.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...

CVE-2025-11471

The CVE-2025-11471 entry affects SourceCodester Hotel and Lodge Management System 1.0, specifically the file /edit_customer.php where manipulating the ID parameter enables SQL injection. Root cause: improper handling of user-supplied ID leads to a SQL injection vulnerability. Impact, as described...

CVE-2025-11470

A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System up to 1.0. The impacted element is an unknown function of the file /managewebsite.php. The manipulation of the argument websiteimage/backloginimage leads to unrestricted upload. The attack is possible t...

CVE-2025-11469

A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /pages/savecustomer.php. Executing manipulation of the argument Contact can lead to sql injection. The attack can be executed remotely. The exploit has...

CVE-2025-11470 SourceCodester Hotel and Lodge Management System manage_website.php unrestricted upload

A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System up to 1.0. The impacted element is an unknown function of the file /managewebsite.php. The manipulation of the argument websiteimage/backloginimage leads to unrestricted upload. The attack is possible t...

CVE-2025-11469 SourceCodester Hotel and Lodge Management System save_customer.php sql injection

A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /pages/savecustomer.php. Executing manipulation of the argument Contact can lead to sql injection. The attack can be executed remotely. The exploit has...

CVE-2025-11469 SourceCodester Hotel and Lodge Management System save_customer.php sql injection

A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /pages/savecustomer.php. Executing manipulation of the argument Contact can lead to sql injection. The attack can be executed remotely. The exploit has...

CVE-2025-11430

A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

CVE-2025-11430

A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

CVE-2025-11430 SourceCodester Simple E-Commerce Bookstore cart.php sql injection

A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

CVE-2025-11430 SourceCodester Simple E-Commerce Bookstore cart.php sql injection

A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

CVE-2025-60312

Sourcecodester Markdown to HTML Converter v1.0 is vulnerable to a Cross-Site Scripting XSS in the "Markdown Input" field, allowing a remote attacker to inject arbitrary HTML/JavaScript code that executes in the victim's browser upon clicking the "Convert to HTML" button...

PT-2025-41271

Name of the Vulnerable Software and Affected Versions Sourcecodester Link Status Checker version 1.0 Description The application is susceptible to a Cross-Site Scripting XSS issue in the 'Enter URLs to check' input field. This allows a remote attacker to execute arbitrary code. The vulnerable...

PT-2025-41290

Name of the Vulnerable Software and Affected Versions SourceCodester Student Grades Management System version 1.0 Description A security issue exists in SourceCodester Student Grades Management System. The add user function within the /admin.php file, specifically in the Manage Users Page...

SourceCodester Simple E-Commerce Bookstore 安全漏洞

SourceCodester Simple E-Commerce Bookstore is SourceCodester open source a simple e-commerce bookstore. A security vulnerability exists in SourceCodester Simple E-Commerce Bookstore version 1.0, which stems from an incorrect operation of the parameter remove in the file /cart.php, which could lea...

SourceCodester Pet Grooming Management Software 安全漏洞

SourceCodester Pet Grooming Management Software is an open source pet grooming management system from SourceCodester. A security vulnerability exists in SourceCodester Pet Grooming Management Software version 1.0, which stems from insufficient validation of fname and lname field inputs, and could...

SourceCodester Online Leave Management System 安全漏洞

SourceCodester Online Leave Management System is a SourceCodester open source online leave management system. A security vulnerability exists in SourceCodester Online Leave Management System version 1.0, which stems from an incorrect manipulation of the parameter employid in the file /reset.php,...