CVE-2025-11431

A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. The impacted element is an unknown function of the file /transaction.php. This manipulation of the argument shopid causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

CVE-2025-11424

A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...

CVE-2025-11424

A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...

Code-Projects Web-Based Inventory and POS System 安全漏洞

Code-Projects Web-Based Inventory and POS System is a web-based inventory and POS system from Code-Projects open source. A security vulnerability exists in version 1.0 of the code-projects Web-Based Inventory and POS System, which stems from an incorrect manipulation of the parameter shopid in th...

anyinventory-rfi.txt

AnyInventory = 1.9.1 Remote file inclusion Download script : http://physics.ramapo.edu/downloads/anyInventory-1.9.1.tar.gz Exploit : http://victime.com/anyInventorypath/environment.php?DIRPREFIX= shell.txt? Dork : anyInventory, the most flexible and powerful web-based inventory system Discovered ...

AnyInventory <= 1.9.1 (environment.php) Remote File Inclusion Vuln

No description provided by source. AnyInventory = 1.9.1 Remote file inclusion Download script : http://physics.ramapo.edu/downloads/anyInventory-1.9.1.tar.gz Exploit : http://victime.com/anyInventorypath/environment.php?DIRPREFIX= shell.txt? Dork : anyInventory, the most flexible and powerful...