9 matches found
CVE-2026-4581 code-projects Simple Laundry System Parameters checklogin.php sql injection
A weakness has been identified in code-projects Simple Laundry System 1.0. Affected is an unknown function of the file /checklogin.php of the component Parameters Handler. This manipulation of the argument Username causes sql injection. The attack is possible to be carried out remotely. The explo...
EUVD-2025-31456
Malicious code in bioql PyPI...
CVE-2025-9399
A vulnerability was detected in YiFang CMS up to 2.0.5. Affected by this issue is some unknown functionality of the file app/logic/Ltool.php. The manipulation of the argument newurl results in sql injection. The attack may be launched remotely. The exploit is now public and may be used. The vendo...
CVE-2025-9150 Surbowl dormitory-management-php violation_add.php sql injection
A vulnerability was identified in Surbowl dormitory-management-php up to 9f1d9d1f528cabffc66fda3652c56ff327fda317. Affected is an unknown function of the file /admin/violationadd.php?id=2. Such manipulation of the argument ID leads to sql injection. The attack may be performed from a remote...
CVE-2025-0945
A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file typedelete.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclos...
CVE-2024-9319
A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...
Alphaware Simple E-Commerce System SQL注入漏洞
Alphaware Simple E-Commerce System is an e-commerce system by razormist individual developers. A SQL injection vulnerability exists in Alphaware Simple E-Commerce System version 1.0, which stems from an incorrect manipulation of the parameter firstname/mi/lastname that can lead to sql injection...
JFinal SQL注入漏洞
JFinal is a Java language based WEB + ORM open source framework. JFinal CMS version 5.1.0 SQL injection vulnerability , the vulnerability stems from the lack of measures to prevent sql injection , resulting in SQL injection...
S-CMS Hospital Building System In***.php file suffers from SQL injection vulnerability
S-CMS hospital station building system is developed by asp+access/mssql, easy to operate, convenient, support PC+mobile+WeChat. There is a SQL injection vulnerability in the In.php file of S-CMS Hospital Building System. Attackers can use the vulnerability to obtain sensitive information in the...