CVE-2025-46190

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userdeliveryupdate.php via the orderid POST parameter...

CVE-2025-46193

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in userproposalupdateorder.php...

PT-2025-20669 · Sourcecodester · Sourcecodester Web-Based Pharmacy Product Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Web-based Pharmacy Product Management System version 1.0 Description: A problem was found in the Add User Page component, which can be exploited to perform cross-site scripting attacks. This issue can be launched remotely, and...

SourceCodester Web-based Pharmacy Product Management System 代码注入漏洞

SourceCodester Web-based Pharmacy Product Management System is SourceCodester open source a Web-based pharmacy product management system . A code injection vulnerability exists in version 1.0 of the SourceCodester Web-based Pharmacy Product Management System due to cross-site scripting in the...

CVE-2025-4504

A vulnerability was found in SourceCodester Online College Library System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit ha...

CVE-2025-4504

CVE-2025-4504 affects SourceCodester Online College Library System 1.0. The vulnerability is in the file /index.php where the Category argument is manipulated to trigger a SQL injection. This can be exploited remotely and the exploit has been disclosed publicly. Multiple connected sources corrobo...

CVE-2025-4504 SourceCodester Online College Library System index.php sql injection

A vulnerability was found in SourceCodester Online College Library System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit ha...

CVE-2025-4504 SourceCodester Online College Library System index.php sql injection

A vulnerability was found in SourceCodester Online College Library System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit ha...

SourceCodester Online College Library System 注入漏洞

SourceCodester Online College Library System is SourceCodester open source an online college library system. SourceCodester Online College Library System version 1.0 has an injection vulnerability, the vulnerability stems from the wrong operation of the parameter Category in the file /index.php...

PT-2025-20630 · Unknown · Sourcecodester Online College Library System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online College Library System version 1.0 Description: A critical vulnerability was found in the SourceCodester Online College Library System. The issue is related to an unknown function of the file /index.php, where the...

CVE-2025-4481

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /search-result.php. The manipulation of the argument searchdata leads to sql injection. The attack may be initiated remotely...

CVE-2025-46191

Arbitrary File Upload in userpaymentupdate.php in SourceCodester Client Database Management System 1.0 allows unauthenticated users to upload arbitrary files via the uploadedfilecancelled field. Due to the absence of proper file extension checks, MIME type validation, and authentication, attacker...

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...

CVE-2025-46190

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userdeliveryupdate.php via the orderid POST parameter...

CVE-2025-46190

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userdeliveryupdate.php via the orderid POST parameter...

CVE-2025-46191

Arbitrary File Upload in userpaymentupdate.php in SourceCodester Client Database Management System 1.0 allows unauthenticated users to upload arbitrary files via the uploadedfilecancelled field. Due to the absence of proper file extension checks, MIME type validation, and authentication, attacker...

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...

CVE-2025-4481 SourceCodester Apartment Visitor Management System search-result.php sql injection

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /search-result.php. The manipulation of the argument searchdata leads to sql injection. The attack may be initiated remotely...

CVE-2025-4481

The CVE-2025-4481 entry concerns SourceCodester Apartment Visitor Management System 1.0. A vulnerability exists in the file /search-result.php where the manipulation of the searchdata parameter leads to SQL injection. A remote attacker could exploit this, and multiple sources label the issue as c...

CVE-2025-46193

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in userproposalupdateorder.php...