CVE-2025-2387 SourceCodester Online Food Ordering System ajax.php sql injection

A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file /admin/ajax.php?action=addtocart. The manipulation of the argument pid leads to sql injection. It is possible to launch the attack remotely...

CVE-2025-2387

SourceCodester Online Food Ordering System 2.0 contains a remote SQL injection in /admin/ajax.php?action=add_to_cart triggered by manipulating pid. The affected component is an unknown function, and the vulnerability is disclosed publicly, enabling exploitation without credentials. The CVE notes ...

CVE-2025-2377

A vulnerability was found in SourceCodester Vehicle Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /confirmbooking.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. Th...

CVE-2025-2377

The CVE-2025-2377 entry concerns SourceCodester Vehicle Management System 1.0. Affected component/file: /confirmbooking.php, where manipulating the id parameter leads to cross-site scripting (XSS). Exploitation is described as remote and publicly disclosed. Affected versions are not detailed beyo...

CVE-2025-2377 SourceCodester Vehicle Management System confirmbooking.php cross site scripting

A vulnerability was found in SourceCodester Vehicle Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /confirmbooking.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. Th...

CVE-2025-2377 SourceCodester Vehicle Management System confirmbooking.php cross site scripting

A vulnerability was found in SourceCodester Vehicle Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /confirmbooking.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. Th...

SourceCodester Online Food Ordering System 注入漏洞

SourceCodester Online Food Ordering System is a SourceCodester open source online food ordering system. An injection vulnerability exists in SourceCodester Online Food Ordering System version 2.0, which stems from an incorrect manipulation of the parameter pid that can lead to SQL injection...

SourceCodester Vehicle Management System 代码注入漏洞

SourceCodester Vehicle Management System is an open source vehicle management system from SourceCodester. A code injection vulnerability exists in SourceCodester Vehicle Management System version 1.0, which stems from incorrect manipulation of the parameter id that can lead to cross-site scriptin...

PT-2025-11476 · Sourcecodester · Itsourcecode Vehicle Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Vehicle Management System version 1.0 Description: A vulnerability was found in the SourceCodester Vehicle Management System, affecting some unknown functionality of the file /confirmbooking.php. The manipulation of the id...

CVE-2025-2046

A vulnerability was found in SourceCodester Best Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/print1.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2025-2046

A vulnerability was found in SourceCodester Best Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/print1.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2025-2046 SourceCodester Best Employee Management System print1.php sql injection

A vulnerability was found in SourceCodester Best Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/print1.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2025-2046 SourceCodester Best Employee Management System print1.php sql injection

A vulnerability was found in SourceCodester Best Employee Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/print1.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2025-2046

CVE-2025-2046 affects SourceCodester Best Employee Management System 1.0. The issue is an SQL injection in the file /admin/print1.php triggered by manipulating the id parameter. This allows remote exploitation and could lead to unauthorized data access or modification, as indicated by multiple so...

CVE-2023-5269

A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been classified as critical. Affected is an unknown function of the file parcellist.php of the component GET Parameter Handler. The manipulation of the argument id/s leads to sql injection. The exploit has been...

SourceCodester Best Employee Management System 注入漏洞

SourceCodester Best Employee Management System is a SourceCodester open source employee management system. An injection vulnerability exists in SourceCodester Best Employee Management System version 1.0, which stems from an incorrect manipulation of the parameter id that can lead to SQL injection...

PT-2025-10011 · Sourcecodester · Sourcecodester Best Employee Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best Employee Management System version 1.0 Description: A critical issue was found in the file /admin/print1.php, where the manipulation of the id argument leads to SQL injection. The attack can be launched remotely. The explo...

CVE-2025-1961

A vulnerability has been found in SourceCodester Best Church Management Software 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/webcrud.php. The manipulation of the argument encryption leads to sql injection. The attack can be...

CVE-2025-1961 SourceCodester Best Church Management Software web_crud.php sql injection

A vulnerability has been found in SourceCodester Best Church Management Software 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/webcrud.php. The manipulation of the argument encryption leads to sql injection. The attack can be...

CVE-2025-1961 SourceCodester Best Church Management Software web_crud.php sql injection

A vulnerability has been found in SourceCodester Best Church Management Software 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/webcrud.php. The manipulation of the argument encryption leads to sql injection. The attack can be...