Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/12/15 2:35 p.m.4 views

CVE-2025-14662

A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been made...

5.4CVSS5.5AI score0.00193EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/14 3:30 p.m.6 views

EUVD-2025-203299

A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been made...

4.8CVSS5.3AI score0.00193EPSS
Exploits1References6
NVD
NVD
added 2025/12/14 2:15 p.m.5 views

CVE-2025-14662

A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been made...

5.4CVSS0.00193EPSS
Exploits1References5
OSV
OSV
added 2025/12/14 2:15 p.m.3 views

CVE-2025-14662

A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/updateuser.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been made...

5.4CVSS4.2AI score0.00193EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/14 12:0 a.m.8 views

PT-2025-51164

A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update user.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The exploit has been mad...

4.8CVSS5.7AI score0.00193EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.3 views

Code-Projects Automated Voting System SQL注入漏洞

Automated Voting System is an automated voting system. Automated Voting System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter Password in the file /admin/updateuser.php. An attacker can exploit this...

7.2CVSS8.2AI score0.0041EPSS
Exploits1References5
OSV
OSV
added 2024/12/31 3:15 p.m.10 views

CVE-2024-13070

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/updateusers.php of the component Update User Page. The manipulation of the argument userupd leads to sql injectio...

8.8CVSS5.7AI score0.00499EPSS
Exploits1References5
NVD
NVD
added 2024/12/31 3:15 p.m.19 views

CVE-2024-13070

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/updateusers.php of the component Update User Page. The manipulation of the argument userupd leads to sql injectio...

8.8CVSS0.00499EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/31 12:0 a.m.4 views

PT-2024-17915 · Unknown · Codeastro Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: CodeAstro Online Food Ordering System version 1.0 Description: A critical issue has been identified in the CodeAstro Online Food Ordering System, affecting an unknown functionality of the file /admin/update users.php, specifically the Update...

8.8CVSS7.2AI score0.00499EPSS
Exploits1References10
OSV
OSV
added 2023/08/08 3:15 p.m.3 views

CVE-2023-36136

PHPJabbers Class Scheduling System 1.0 lacks encryption on the password when editing a user account update user page allowing an attacker to capture all user names and passwords in clear text...

6.5CVSS5.8AI score0.00233EPSS
Exploits0References2
Prion
Prion
added 2023/08/08 3:15 p.m.19 views

Default credentials

PHPJabbers Class Scheduling System 1.0 lacks encryption on the password when editing a user account update user page allowing an attacker to capture all user names and passwords in clear text...

4CVSS6.4AI score0.00233EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder