130931 matches found
Online Shoe Store admin_football.php File SQL Injection Vulnerability
Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter pid in the file /admin/adminfootball.php. The vulnerability can be exploited to execute...
Simple Pizza Ordering System addcatexec.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter textfield in the file /addcatexec.php. An attacker can exploit...
Simple Pizza Ordering System cashconfirm.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter transactioncode in the file /cashconfirm.php. The vulnerability can ...
Online Shoe Store admin_product.php File SQL Injection Vulnerability
Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter pid in the file /admin/adminproduct.php. An attacker can exploit this vulnerability to...
Student Record system Using PHP and MySQL SQL Injection Vulnerability
Student Record system Using PHP and MySQL is a student record system based on php and mysql. A SQL injection vulnerability exists in Student Record system Using PHP and MySQL, which stems from the lack of validation of externally entered SQL statements for variables $cshortname, $cfullname, and...
Online Bidding System bidlog.php File SQL Injection Vulnerability
Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID in the file /bidlog.php. An attacker can exploit this vulnerability to execute...
Pre-School Enrollment System add-teacher.php File SQL Injection Vulnerability
Pre-School Enrollment System is a web-based preschool enrollment system. Pre-School Enrollment System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter tsubject in the file /admin/add-teacher.php. An attack...
Inventory Management System fetchSelectedBrand.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter brandId in the file /phpaction/fetchSelectedBrand.php. An attacke...
PDF-XChange Editor Information Disclosure Vulnerability (CNVD-2025-16296)
PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. An information disclosure vulnerability exists in PDF-XChange Editor, which is caused by a lack of proper validation of user-supplied data. An attacker could exploit this vulnerabilit...
Autel MaxiCharger AC Wallbox Commercial Code Execution Vulnerability
Autel MaxiCharger AC Wallbox Commercial is a smart AI electric car charger from Autel USA. A code execution vulnerability exists in Autel MaxiCharger AC Wallbox Commercial, which can be exploited by an attacker to execute arbitrary code in the context of the device...
Apache Airflow SQL Injection Vulnerability
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. An SQL injection vulnerability exists in Apache Airflow versions prior to 6.4.0 tha...
JetBrains TeamCity NPM Registry Integration Cross-Site Scripting Vulnerability
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. JetBrains TeamCity suffers from a cross-site...
Apache Traffic Server Access Control Error Vulnerability
Apache Traffic Server ATS is the United States Apache Apache Foundation's set of scalable HTTP proxy and caching server. An access control error vulnerability exists in Apache Traffic Server ATS versions 10.0.0 through 10.0.6 and 9.0.0 through 9.2.10, which stems from an ACL configuration that do...
PDF-XChange Editor Remote Code Execution Vulnerability (CNVD-2025-21928)
PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. A remote code execution vulnerability exists in PDF-XChange Editor, which can be exploited by an attacker to execute code in the context of the current process...
HDF5 H5Cimage.c function buffer overflow vulnerability
HDF5 is a library of HDF open source . HDF5 there is a buffer overflow vulnerability , the vulnerability stems from the file H5Cimage.c function H5Creconstructcacheentry failed to correctly validate the length of the input data size , an attacker can exploit the vulnerability to cause a denial of...
PDF-XChange Editor Code Execution Vulnerability (CNVD-2025-16301)
PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. A code execution vulnerability exists in PDF-XChange Editor, which is caused by a lack of proper validation of user-supplied data. An attacker could exploit the vulnerability to execu...
Autel MaxiCharger AC Wallbox Commercial Buffer Overflow Vulnerability (CNVD-2025-14946)
Autel MaxiCharger AC Wallbox Commercial is a smart AI electric car charger from Autel USA. The Autel MaxiCharger AC Wallbox Commercial suffers from a buffer overflow vulnerability that stems from the DLBSlaveRegister message failing to properly validate the length size of the input data, which ca...
Unauthorized Access Vulnerability in MOXA ioLogik E1213
The MOXA ioLogik E1213 is an industrial grade remote Ethernet I/O module. An unauthorized access vulnerability exists in the MOXA ioLogik E1213, which can be exploited by attackers to obtain sensitive information...
Online Bidding System showprod.php File SQL Injection Vulnerability
Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID of the file /showprod.php. An attacker can exploit this vulnerability to execute...
Online Hotel Reservation System demo.php File SQL Injection Vulnerability
Online Hotel Reservation System is a simple online hotel reservation system. Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Start in the file /reservation/demo.php. The...
Car Rental Portal Cross-Site Request Forgery Vulnerability
Car Rental Portal is a rental car portal. Car Rental Portal suffers from a cross-site request forgery vulnerability that arises from a web application that does not adequately validate that a request is coming from a trusted user. The vulnerability can be exploited by an attacker to spoof a...
COVID19 Testing Management System /search-report-result.php File Code Injection Vulnerability
The COVID19 Testing Management System is a new crown pneumonia testing management system. COVID19 Testing Management System suffers from a code injection vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by parameter q in file...
Notice Board System manage-notices.php file cross-site scripting vulnerability
Notice Board System is a bulletin board system. Notice Board System has a cross-site scripting vulnerability, the vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the parameters Title/Description in the file /admin/manage-notices.php, which can be...
School Fees Payment System Cross-Site Request Forgery Vulnerability
School Fees Payment System is a tuition payment system. School Fees Payment System is vulnerable to a cross-site request forgery vulnerability that arises from a web application that does not adequately validate that a request is coming from a trusted user. No details of the vulnerability are...
Simple Online Hotel Reservation System delete_pending.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter transactionid in the file...
Simple Pizza Ordering System adding-exec.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ingname in the file /adding-exec.php. An attacker can exploit this...
PDF-XChange Editor Code Execution Vulnerability (CNVD-2025-16304)
PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. A code execution vulnerability exists in PDF-XChange Editor, which is caused by a lack of proper validation of user-supplied data. An attacker could exploit the vulnerability to execu...
Simple Pizza Ordering System adds.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of an externally entered SQL statement in the parameter userid in file /adds.php. An attacker can exploit this vulnerabili...
Simple Pizza Ordering System adduser-exec.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of an externally entered SQL statement in the parameter Username in the file /adduser-exec.php. An attacker can exploit th...
Simple Pizza Ordering System editpro.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /editpro.php. An attacker can exploit this vulnerabilit...
Simple Pizza Ordering System edituser-exec.php file SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of an externally entered SQL statement in the parameter userid in the file /edituser-exec.php. An attacker can exploit thi...
Simple Pizza Ordering System paymentportal.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter person in the file /paymentportal.php. The vulnerability can be...
Simple Pizza Ordering System /salesreport.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter dayfrom in the file /salesreport.php. The vulnerability can be...
Simple Pizza Ordering System saveorder.php File SQL Injection Vulnerability
Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /saveorder.php. An attacker can exploit this...
Car Rental System message_admin.php File SQL Injection Vulnerability
Car Rental System is a car rental system. Car Rental System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the messageadmin.php file's parameter Message. An attacker can use this vulnerability to execute illegal SQL commands...
Car Rental System File Upload Vulnerability
Car Rental System is a car rental system. Car Rental System has a file upload vulnerability that stems from a lack of valid validation of uploaded files by the parameter image in the file /admin/addcars.php. An attacker can use this vulnerability to upload malicious files...
Inventory Management System changePassword.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the userid parameter in the /phpaction/changePassword.php file against an externally entered SQL statement. An...
Inventory Management System createCategories.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the categoriesStatus parameter of the /phpaction/createCategories.php file. An...
Inventory Management System editBrand.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter editBrandStatus in file /phpaction/editBrand.php. An attacker can...
Inventory Management System fetchSelectedCategories.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of the categoriesId parameter in the /phpaction/fetchSelectedCategories.php file against externally entered SQL...
Inventory Management System removeCategories.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the categoriesId parameter of file /phpaction/removeCategories.php. An attacker c...
Inventory Management System changeUsername.php File SQL Injection Vulnerability
Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter userid in the file /changeUsername.php. An attacker can exploit...
Online Shoe Store admin_index.php File SQL Injection Vulnerability
Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of the parameter Username in the file /admin/adminindex.php for externally entered SQL statements. An attacker can exploit this vulnerability ...
Online Shoe Store cart.php File SQL Injection Vulnerability
Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter qty in the file /cart.php. The vulnerability can be exploited to execute illegal SQL...
Online Shoe Store cart2.php File SQL Injection Vulnerability
Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /cart2.php. An attacker can exploit this vulnerability to execute illegal...
Simple Online Hotel Reservation System delete_account.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that stems from a lack of validation of an externally entered SQL statement in the parameter adminid of the deleteaccount.php file...
Simple Online Hotel Reservation System add_account.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter name/adminid in the file...
Simple Online Hotel Reservation System add_reserve.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter firstname in the file...
Simple Online Hotel Reservation System checkout_query.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter transactionid in the file...
Simple Online Hotel Reservation System delete_room.php File SQL Injection Vulnerability
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter roomid in the file...