CVE-2025-10429

CVE-2025-10429 affects SourceCodester Pet Grooming Management Software 1.0. The vulnerability is a SQL injection in the unknown functionality of the file /admin/ajax_product.php, triggered by manipulating the drop_services argument. It can be exploited remotely and publicly disclosed. Affected pr...

CVE-2025-10428

CVE-2025-10428 affects SourceCodester Pet Grooming Management Software 1.0, specifically the Setting Handler component. The vulnerability is in the file /admin/seo_setting.php where manipulation of the argument website_image enables an unrestricted file upload. This is a remote, unauthenticated-s...

CVE-2025-10427 SourceCodester Pet Grooming Management Software user.php unrestricted upload

A weakness has been identified in SourceCodester Pet Grooming Management Software 1.0. This impacts an unknown function of the file /admin/operation/user.php. Executing manipulation of the argument websiteimage can lead to unrestricted upload. It is possible to launch the attack remotely. The...

CVE-2025-10427

SourceCodester Pet Grooming Management Software 1.0 is affected. The vulnerability lies in the file /admin/operation/user.php where manipulating the website_image argument enables unrestricted file uploads, potentially allowing remote and unauthenticated or low-privilege attackers to upload arbit...

CVE-2025-10421

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10421

A flaw has been found in SourceCodester Student Grading System 1.0. This vulnerability affects unknown code of the file /updateaccount.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

CVE-2025-10420

A vulnerability was detected in SourceCodester Student Grading System 1.0. This affects an unknown part of the file /form137.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

CVE-2025-10421

The CVE-2025-10421 entry concerns SourceCodester Student Grading System 1.0. Affected component: the file /update_account.php. Root cause: manipulation of the ID parameter enables SQL injection, with remote exploitation possible and an exploit published. Impact is consistent with the vulnerabilit...

CVE-2025-10419

A security vulnerability has been detected in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /delpromote.php. Such manipulation of the argument sy leads to sql injection. The attack can be launched remotely. The exploit has been disclos...

CVE-2025-10419

A security vulnerability has been detected in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /delpromote.php. Such manipulation of the argument sy leads to sql injection. The attack can be launched remotely. The exploit has been disclos...

CVE-2025-10418

A weakness has been identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewstudents.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been made availab...

CVE-2025-10419 SourceCodester Student Grading System del_promote.php sql injection

A security vulnerability has been detected in SourceCodester Student Grading System 1.0. Affected by this issue is some unknown functionality of the file /delpromote.php. Such manipulation of the argument sy leads to sql injection. The attack can be launched remotely. The exploit has been disclos...

CVE-2025-10419

The CVE-2025-10419 entry concerns SourceCodester Student Grading System 1.0, with a SQL injection in the /del_promote.php endpoint (and variants like /del promote.php). Multiple connected sources confirm remote exploitation and publicly disclosed exploit. The vulnerability stems from how the sy p...

CVE-2025-10418 SourceCodester Student Grading System view_students.php sql injection

A weakness has been identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewstudents.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been made availab...

CVE-2025-10418 SourceCodester Student Grading System view_students.php sql injection

A weakness has been identified in SourceCodester Student Grading System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewstudents.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been made availab...

SourceCodester Pet Grooming Management Software 代码问题漏洞

SourceCodester Pet Grooming Management Software is an open source pet grooming management system from SourceCodester. A code issue vulnerability exists in version 1.0 of SourceCodester Pet Grooming Management Software, which stems from an incorrect manipulation of the parameter websiteimage in th...

PT-2025-37441

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Grading System version 1.0 Description: A SQL injection issue exists in SourceCodester Student Grading System 1.0. The issue affects an unknown part of the file /form137.php. Manipulation of the ID parameter can lead to...

PT-2025-37773

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A SQL injection issue exists in SourceCodester Online Student File Management System version 1.0. The issue is located in the /admin/index.php file, within an unkno...

PT-2025-37438

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Grading System version 1.0 Description: A SQL injection weakness exists in the /view students.php file of the application. Manipulation of the ID argument can trigger the injection. This issue can be exploited remotely...

PT-2025-37442

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Grading System version 1.0 Description: A flaw exists in the SourceCodester Student Grading System that may allow for SQL injection. The issue affects unknown code within the /update account.php file. Manipulation of th...