Crud Operation System Security Vulnerabilities and Issues — Crud Operation System CVE List

Code-projectsCrud Operation System

7 matches found

CVE•added 2024/09/13 12:31 a.m.•58 views

CVE-2024-8762

CVE-2024-8762 affects code-projects Crud Operation System 1.0. The vulnerability is an SQL injection in the /updatedata.php file caused by unsafe handling of the sid parameter, exploitable remotely. Multiple sources corroborate that the impact can compromise confidentiality, integrity, and availa...

9.8CVSS7AI score0.00667EPSS

CVE•added 2024/09/15 3:0 a.m.•53 views

CVE-2024-8868

CVE-2024-8868 affects code-projects Crud Operation System 1.0. The vulnerability is a SQL injection in the savedata.php processing path, triggered by manipulating the sname parameter. Impact is described as critical, with remote attack capability and publicly disclosed exploit. Affected component...

9.8CVSS7.7AI score0.00921EPSS

CVE•added 2024/11/27 12:0 a.m.•51 views

CVE-2024-11820

CVE-2024-11820 affects the open-source project Code-Projects Crud Operation System 1.0 . The vulnerability is a cross-site scripting (XSS) flaw in the handling of the saddress parameter of the file /add.php . The root cause is indicated as the manipulation of this argument leading to XSS. The iss...

5.4CVSS3.8AI score0.00369EPSS

CVE•added 2024/09/20 12:0 a.m.•46 views

CVE-2024-9011

The CVE-2024-9011 issue affects code-projects Crud Operation System 1.0, specifically an unknown function in updata.php where manipulating the sid parameter enables SQL injection. The vulnerability can be exploited remotely and has public exploit disclosure. The connected PT-2024-39365 entry prov...

9.8CVSS7.1AI score0.006EPSS

CVE•added 2024/10/10 9:0 p.m.•44 views

CVE-2024-9812

Summary (CVE-2024-9812) A SQL injection flaw exists in code-projects Crud Operation System 1.0, affecting the delete.php file via manipulation of the “sid” parameter. The issue is exploitable remotely and can impact confidentiality, integrity, and availability as described in multiple sources. Th...

9.8CVSS7.8AI score0.00663EPSS

CVE•added 2025/10/07 2:48 a.m.•13 views

CVE-2025-11347

CVE-2025-11347 affects code-projects Student Crud Operation up to 3.3, where the function move_uploaded_file in add.php allows unrestricted file upload. The vulnerability can be triggered remotely and the exploit has been publicized. Affected versions are stated as up to 3.3; sources suggest that...

9.8CVSS7.2AI score0.00479EPSS

Web

CVE•added 2025/10/06 6:2 p.m.•11 views

CVE-2025-11343

The CVE-2025-11343 entry concerns code-projects Student Crud Operation 3.3, specifically the delete.php file. The vulnerability is a SQL injection triggered by unsafely handling the ID parameter, enabling remote exploitation. Public exploitation is indicated in the documents, with multiple source...

8.6CVSS6.7AI score0.00372EPSS