CVE-2025-9702 SourceCodester Simple Cafe Billing System sales_report.php sql injection

A vulnerability was identified in SourceCodester Simple Cafe Billing System 1.0. This affects an unknown function of the file /salesreport.php. The manipulation of the argument month leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-57425

A Stored Cross-Site Scripting XSS vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint...

CVE-2025-9473

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

CVE-2025-9700

A flaw has been found in SourceCodester Online Book Store 1.0. This issue affects some unknown processing of the file /publisherlist.php. This manipulation of the argument pubid causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

CVE-2025-9701

A vulnerability was determined in SourceCodester Simple Cafe Billing System 1.0. The impacted element is an unknown function of the file /receipt.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed...

CVE-2025-9701

CVE-2025-9701 affects SourceCodester Simple Cafe Billing System 1.0. The vulnerability is a SQL injection in the file /receipt.php, caused by manipulation of the ID parameter, enabling remote exploitation. Multiple linked sources (NVD, Red Hat, CVE lists, and security notes) confirm remote attack...

CVE-2025-9701 SourceCodester Simple Cafe Billing System receipt.php sql injection

A vulnerability was determined in SourceCodester Simple Cafe Billing System 1.0. The impacted element is an unknown function of the file /receipt.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed...

CVE-2025-9700 SourceCodester Online Book Store publisher_list.php sql injection

A flaw has been found in SourceCodester Online Book Store 1.0. This issue affects some unknown processing of the file /publisherlist.php. This manipulation of the argument pubid causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

CVE-2025-9700

The CVE-2025-9700 entry concerns SourceCodester Online Book Store 1.0 where the /publisher_list.php endpoint processes the pubid parameter unsafely, enabling SQL injection. Several trusted sources corroborate a remote-executable SQL injection vulnerability stemming from incorrect handling of pubi...

CVE-2025-9699

A vulnerability was detected in SourceCodester Online Polling System Code 1.0. This vulnerability affects unknown code of the file /admin/checklogin.php. The manipulation of the argument myusername results in sql injection. The attack may be performed from a remote location. The exploit is now...

CVE-2025-9699

A vulnerability was detected in SourceCodester Online Polling System Code 1.0. This vulnerability affects unknown code of the file /admin/checklogin.php. The manipulation of the argument myusername results in sql injection. The attack may be performed from a remote location. The exploit is now...

CVE-2025-9699 SourceCodester Online Polling System Code checklogin.php sql injection

A vulnerability was detected in SourceCodester Online Polling System Code 1.0. This vulnerability affects unknown code of the file /admin/checklogin.php. The manipulation of the argument myusername results in sql injection. The attack may be performed from a remote location. The exploit is now...

CVE-2025-9699

The CVE-2025-9699 entry concerns SourceCodester Online Polling System Code 1.0. A vulnerability exists in the file /admin/checklogin.php where manipulating the myusername parameter enables SQL injection. This is a remote exploit with public tooling/occurrence reported. Affected software is descri...

CVE-2025-9690 SourceCodester Advanced School Management System vendordetails sql injection

A flaw has been found in SourceCodester Advanced School Management System 1.0. This affects an unknown function of the file /index.php/stock/vendordetails. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...

Pet-Grooming-Management-RCE

Proof of Concept – Unrestricted File Upload in Pet Grooming Ma...

CVE-2025-9689

A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/stock/itemselect. The manipulation of the argument q results in sql injection. It is possible to launch the attack remotely. The exploit is now...

SourceCodester Advanced School Management System 安全漏洞

SourceCodester Advanced School Management System is an advanced school management system from SourceCodester open source. A security vulnerability exists in SourceCodester Advanced School Management System version 1.0, which originates from a SQL injection due to a misbehavior of parameter q in...

SourceCodester Online Book Store 安全漏洞

SourceCodester Online Book Store is a SourceCodester open source online bookstore. A security vulnerability exists in SourceCodester Online Book Store version 1.0, which originates from a SQL injection due to incorrect manipulation of the parameter pubid in file /publisherlist.php...

SourceCodester Water Billing System 安全漏洞

SourceCodester Water Billing System is an open source water billing system from SourceCodester. A security vulnerability exists in SourceCodester Water Billing System version 1.0, which results from SQL injection due to incorrect manipulation of the parameter ID in the file /paybill.php...

SourceCodester Water Billing System 安全漏洞

SourceCodester Water Billing System is an open source water billing system from SourceCodester. A security vulnerability exists in SourceCodester Water Billing System version 1.0, which is caused by a SQL injection due to incorrect manipulation of the parameter ID in the file /edit.php...