183 matches found
EUVD-2024-48981
Malicious code in bioql PyPI...
EUVD-2025-17058
Malicious code in bioql PyPI...
CVE-2025-7408
CVE-2025-7408 affects SourceCodester Zoo Management System 1.0. The vulnerability is triggered by manipulating the msg parameter in /admin/templates/animal_form_template.php, causing cross-site scripting and allowing remote initiation. Public exploit information exists. Remediation guidance from ...
CVE-2025-7139
CVE-2025-7139 affects SourceCodester Best Salon Management System 1.0. The issue resides in the Update Customer Details Page, specifically the /panel/edit-customer-detailed.php file where the Name parameter is manipulated to trigger cross-site scripting. Exploitation can be remote, and public dis...
CVE-2025-6871 SourceCodester Simple Company Website Login.php sql injection
A vulnerability classified as critical has been found in SourceCodester Simple Company Website 1.0. This affects an unknown part of the file /classes/Login.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-6862
A vulnerability classified as critical has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/editplan.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. The exploit has...
PT-2025-27385 · Sourcecodester · Sourcecodester Simple Company Website
Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Company Website version 1.0 Description: A critical issue has been found in the processing of the file /classes/Users.php?f=save, allowing for unrestricted upload through the manipulation of the img argument. This issue...
CVE-2025-6607 SourceCodester Best Salon Management System stock.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/stock.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-6476
A vulnerability was found in SourceCodester Gym Management System 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may b...
CVE-2025-5984
A vulnerability has been found in SourceCodester Online Student Clearance System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Admin/add-fee.php. The manipulation of the argument txtamt leads to cross site scripting. The attack can be...
CVE-2025-5984
A vulnerability has been found in SourceCodester Online Student Clearance System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Admin/add-fee.php. The manipulation of the argument txtamt leads to cross site scripting. The attack can be...
CVE-2025-5840
A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /userupdatecustomerorder.php. The manipulation of the argument uploadedfile leads to unrestricted upload. It is possible to initiate the...
CVE-2025-5758
A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. This affects an unknown part of the file /doctor.php. The manipulation of the argument doctorname leads to sql injection. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5725
A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /script/academic/grading-system of the component Grading System Page. The manipulation of the argument Rema...
CVE-2024-8348
A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. Affected by this issue is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The...
CVE-2024-7942
A vulnerability has been found in SourceCodester Leads Manager Tool 1.0 and classified as problematic. This vulnerability affects unknown code of the file update-leads.php. The manipulation of the argument phonenumber leads to cross site scripting. The attack can be initiated remotely. The exploi...
CVE-2024-7812
A vulnerability classified as problematic was found in SourceCodester Best House Rental Management System 1.0. This vulnerability affects unknown code of the file /rental0/rental/ajax.php?action=savetenant of the component POST Parameter Handler. The manipulation of the argument lastname leads to...
CVE-2024-7660
A vulnerability has been found in SourceCodester File Manager App 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Add File Handler. The manipulation of the argument File Title/Uploaded By leads to cross site scripting. The attack can ...
CVE-2024-7309
A vulnerability was found in SourceCodester Record Management System 1.0. It has been classified as problematic. This affects an unknown part of the file entry.php. The manipulation of the argument school leads to cross site scripting. It is possible to initiate the attack remotely. The exploit h...
CVE-2024-7363
A vulnerability, which was classified as critical, was found in SourceCodester Tracking Monitoring Management System 1.0. Affected is an unknown function of the file /manageperson.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...