PT-2025-20576

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description The software is susceptible to a SQL Injection issue in the 'user order customer update.php' file. The issue occurs through the order id POST parameter. Exploitation of...

CVE-2025-46193

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in userproposalupdateorder.php...

CVE-2025-46189

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userordercustomerupdate.php via the orderid POST parameter...

CVE-2025-46191

Arbitrary File Upload in userpaymentupdate.php in SourceCodester Client Database Management System 1.0 allows unauthenticated users to upload arbitrary files via the uploadedfilecancelled field. Due to the absence of proper file extension checks, MIME type validation, and authentication, attacker...

CVE-2025-46192

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userpaymentupdate.php via the orderid POST parameter...

CVE-2025-46191

Arbitrary File Upload in userpaymentupdate.php in SourceCodester Client Database Management System 1.0 allows unauthenticated users to upload arbitrary files via the uploadedfilecancelled field. Due to the absence of proper file extension checks, MIME type validation, and authentication, attacker...

CVE-2025-46188

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in superadminphpmyadmin.php...

CVE-2025-46193

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in userproposalupdateorder.php...

CVE-2025-46190

CVE-2025-46190 affects SourceCodester Client Database Management System 1.0, with a SQL Injection vulnerability in the file user_delivery_update.php exploitable via the POST parameter order_id . The CVE has a high impact (CVSS 3.1: 9.8, CRITICAL) with network attack vector, no privileges required...

PT-2025-20577

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description SourceCodester Client Database Management System version 1.0 is susceptible to a SQL Injection issue in the 'user delivery update.php' file. The issue is triggered throug...

CVE-2025-46189

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in userordercustomerupdate.php via the orderid POST parameter...

SourceCodester Online Student Clearance System 安全漏洞

SourceCodester Online Student Clearance System is a SourceCodester open source online student management system. A security vulnerability exists in SourceCodester Online Student Clearance System version 1.0, which originates from an unrestricted upload due to the userImage action in the parameter...

SourceCodester Online Student Clearance System 代码注入漏洞

SourceCodester Online Student Clearance System is a SourceCodester open source online student management system. A code injection vulnerability exists in SourceCodester Online Student Clearance System version 1.0, which originates from cross-site scripting due to the operation of parameter Fullna...

SourceCodester Online Student Clearance System 代码注入漏洞

SourceCodester Online Student Clearance System is a SourceCodester open source online student management system. A code injection vulnerability exists in SourceCodester Online Student Clearance System version 1.0, which originates from cross-site scripting due to a parameter Username operation in...

SourceCodester Online Student Clearance System 注入漏洞

SourceCodester Online Student Clearance System is a SourceCodester open source online student management system. SourceCodester Online Student Clearance System version 1.0 has an injection vulnerability, the vulnerability stems from the parameter txtfullname/txtemail/cmddesignation operation in t...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from an SQL injection in superadminphpmyadmin.php...

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from SQL injection due to incorrect operation of the parameter...

CVE-2025-46188

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in the superadmin_phpmyadmin.php file. The root cause is insufficient input validation in the affected file, enabling high-impact access to confidential data, potential manipulation, and disruption (CVSS 3.1 base ...