SourceCodester Online Polling System Code 安全漏洞

SourceCodester Online Polling System Code is a SourceCodester open source online polling system. A security vulnerability exists in SourceCodester Online Polling System Code version 1.0, which is caused by a SQL injection due to incorrect manipulation of the parameter myusername in the file...

SourceCodester Water Billing System 安全漏洞

SourceCodester Water Billing System is an open source water billing system from SourceCodester. A security vulnerability exists in SourceCodester Water Billing System version 1.0, which is caused by a SQL injection due to incorrect manipulation of the parameter ID in the file /viewbill.php...

PT-2025-35359

Name of the Vulnerable Software and Affected Versions: SourceCodester Advanced School Management System version 1.0 Description: A SQL injection issue exists in SourceCodester Advanced School Management System 1.0. The vulnerability is located in an unknown function within the /index.php/stock/it...

PT-2025-35375

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Polling System Code version 1.0 Description: A SQL injection issue exists due to the manipulation of the myusername argument in the /admin/checklogin.php file. The attack can be performed remotely. The exploit is publicl...

PT-2025-35379

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Cafe Billing System version 1.0 Description: A SQL injection issue exists in SourceCodester Simple Cafe Billing System 1.0. The vulnerability is located in the /sales report.php file, affecting an unknown function...

CVE-2025-9660

A vulnerability was found in SourceCodester Bakeshop Online Ordering System 1.0. The impacted element is an unknown function of the file /passwordrecover.php. Performing manipulation of the argument phonenumber results in sql injection. The attack is possible to be carried out remotely. The explo...

CVE-2025-9660

A vulnerability was found in SourceCodester Bakeshop Online Ordering System 1.0. The impacted element is an unknown function of the file /passwordrecover.php. Performing manipulation of the argument phonenumber results in sql injection. The attack is possible to be carried out remotely. The explo...

CVE-2025-9660 SourceCodester Bakeshop Online Ordering System passwordrecover.php sql injection

A vulnerability was found in SourceCodester Bakeshop Online Ordering System 1.0. The impacted element is an unknown function of the file /passwordrecover.php. Performing manipulation of the argument phonenumber results in sql injection. The attack is possible to be carried out remotely. The explo...

SourceCodester Bakeshop Online Ordering System 安全漏洞

SourceCodester Bakeshop Online Ordering System is a SourceCodester open source online ordering system. A security vulnerability exists in SourceCodester Bakeshop Online Ordering System version 1.0, which results from SQL injection due to incorrect manipulation of the parameter phonenumber in the...

CVE-2025-57425

A Stored Cross-Site Scripting XSS vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint...

CVE-2025-57425

A Stored Cross-Site Scripting XSS vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint...

CVE-2025-9476

A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /SuperadminDashboard/process/editemployeeprocess.php. Such manipulation of the argument employeefile201 leads to unrestricted upload. The attack...

CVE-2025-9475

A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /AdminDashboard/process/editemployeeprocess.php. This manipulation of the argument employeefile201 causes unrestricted upload. The attack may be...

CVE-2025-9475

A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /AdminDashboard/process/editemployeeprocess.php. This manipulation of the argument employeefile201 causes unrestricted upload. The attack may be...

CVE-2025-9476 SourceCodester Human Resource Information System editemployee_process.php unrestricted upload

A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /SuperadminDashboard/process/editemployeeprocess.php. Such manipulation of the argument employeefile201 leads to unrestricted upload. The attack...

CVE-2025-9476 SourceCodester Human Resource Information System editemployee_process.php unrestricted upload

A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /SuperadminDashboard/process/editemployeeprocess.php. Such manipulation of the argument employeefile201 leads to unrestricted upload. The attack...

CVE-2025-9473

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

CVE-2025-9473

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...

CVE-2025-9473

SourceCodester Online Bank Management System 1.0 has a SQL injection in /feedback.php triggered by manipulating the msg parameter. The vulnerability is remote and has public exploit discussion. Multiple sources describe the issue and its impact on confidentiality, integrity, and availability as h...

CVE-2025-9473 SourceCodester Online Bank Management System feedback.php sql injection

A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly an...