CVE-2025-4912 SourceCodester Student Result Management System Image File update_student.php path traversal

A vulnerability has been found in SourceCodester Student Result Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/core/updatestudent.php of the component Image File Handler. The manipulation of the argument oldphoto lea...

CVE-2025-4912

The CVE-2025-4912 affects SourceCodester Student Result Management System 1.0, specifically the Image File Handler’s /admin/core/update_student.php. The vulnerability arises from manipulating the old_photo parameter, enabling path traversal. It is exploitable remotely and has been publicly disclo...

CVE-2025-4909

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2025-4909

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2025-4816

A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment.php of the component GET Parameter Handler. The manipulation of the argument ID leads to sql injection. It is possible to...

CVE-2025-4909

SourceCodester Client Database Management System 1.0 is affected. The issue is a directory-listing information disclosure affecting unknown code, exploitable remotely over the network. PT-2025-21878 notes this as a critical issue with no fix available yet; recommended workaround is to restrict ac...

CVE-2025-4909 SourceCodester Client Database Management System exposure of information through directory listing

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2025-4909 SourceCodester Client Database Management System exposure of information through directory listing

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiated remotely. The exploit has been disclosed to t...

SourceCodester Client Database Management System 注入漏洞

SourceCodester Client Database Management System is SourceCodester open source a client database management system . SourceCodester Client Database Management System version 1.0 has an injection vulnerability, the vulnerability stems from the operation of the parameter orderid in the file...

SourceCodester Client Database Management System 代码问题漏洞

SourceCodester Client Database Management System is SourceCodester open source a client database management system . A code issue vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from an unlimited upload due to the operation of the parameter...

SourceCodester Student Result Management System 安全漏洞

SourceCodester Student Result Management System is a SourceCodester open source student result management system. A security vulnerability exists in SourceCodester Student Result Management System version 1.0, which originates from a path traversal caused by the operation of the parameter oldphot...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is an open source client database management system from SourceCodester. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from a directory listing that leads to information disclosure...

PT-2025-21996 · Sourcecodester · Sourcecodester Apartment Visitor Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Apartment Visitor Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown functionality of the file /profile.php. The manipulation of the mobilenumber argument leads to SQL...

PT-2025-21943 · Unknown · Sourcecodester Stock Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Stock Management System version 1.0 Description: A critical issue affects the processing of the file /php action/changePassword.php, where the manipulation of the user id argument leads to SQL injection. The attack can be...

PT-2025-21882 · Sourcecodester · Sourcecodester Student Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Result Management System version 1.0 Description: A critical issue has been found in the Image File Handler component of the affected system, specifically in the file /admin/core/update student.php. The manipulation of...

PT-2025-21928 · Unknown · Sourcecodester Client Database Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Client Database Management System version 1.0 Description: A critical issue was found in the SourceCodester Client Database Management System. The problem affects an unknown function of the file /user void transaction.php. The...

PT-2025-21927 · Unknown · Sourcecodester Client Database Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Client Database Management System version 1.0 Description: A critical issue has been found in the processing of the file /user delivery update.php, where the manipulation of the uploaded file cancelled argument leads to...

PT-2025-21878 · Sourcecodester · Sourcecodester Client Database Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Client Database Management System version 1.0 Description: A critical issue was found in the software, affecting unknown code and leading to exposure of information through directory listing. The attack can be initiated remotel...

CVE-2025-4898

A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as critical. This vulnerability affects the function unlink of the file updatesystem.php of the component Logo File Handler. The manipulation of the argument oldlogo leads to path traversal. The...

CVE-2025-4898 SourceCodester Student Result Management System Logo File update_system.php unlink path traversal

A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as critical. This vulnerability affects the function unlink of the file updatesystem.php of the component Logo File Handler. The manipulation of the argument oldlogo leads to path traversal. The...