10 matches found
CVE-2026-4784
The CVE-2026-4784 vulnerability affects code-projects Simple Laundry System 1.0, specifically the Parameter Handler’s /checkcheckout.php and its serviceId parameter. The root cause allows SQL injection in a remote-exploit scenario, with the exploit already public and potentially usable. Multiple ...
CVE-2026-4850
CVE-2026-4850 affects code-projects Simple Laundry System 1.0. Affected component: Parameter Handler, file /checkregisitem.php. Root cause: manipulation of the Long-arm-shirtVol argument enables SQL injection. Attack vector is remote; exploit publicly released. Multiple sources (NVD, CVE records,...
CVE-2026-4908
The CVE-2026-4908 entry concerns code-projects Simple Laundry System 1.0. The vulnerability resides in the Parameter Handler’s modstaffinfo.php, where manipulating the userid parameter enables SQL injection. The flaw is exploitable remotely and has seen public exploit activity. Connected sources ...
CVE-2026-5257
The CVE-2026-5257 entry concerns code-projects Simple Laundry System 1.0. The vulnerability affects the Parameter Handler component, specifically the /delstaffinfo.php file, where manipulating the userid parameter leads to a SQL injection. The issue is exploitable remotely, and public disclosures...
CVE-2026-4579
The CVE-2026-4579 entry concerns code-projects Simple Laundry System 1.0, specifically the file /viewdetail.php in the Parameters Handler component. The vulnerability is triggered by manipulating the serviceId argument, leading to SQL injection. Remote exploitation is possible, and an exploit is ...
CVE-2026-4580
The CVE-2026-4580 entry concerns code-projects Simple Laundry System 1.0, where the /checkupdatestatus.php endpoint in the Parameters Handler is vulnerable. The issue arises from manipulating the serviceId parameter, enabling SQL injection. The vulnerability is described as exploitable remotely, ...
CVE-2026-4849
CVE-2026-4849 affects code-projects Simple Laundry System 1.0. The vulnerability is in the /modify.php file within the Parameter Handler, where manipulating the firstName argument leads to cross-site scripting (XSS). The impact is described as Low integrity impact with no confidentiality or avail...
CVE-2026-5255
CVE-2026-5255 affects code-projects Simple Laundry System 1.0, specifically an issue in the Parameter Handler’s delstaffinfo.php where manipulating the userid parameter triggers cross-site scripting. The vulnerability can be exploited remotely, and the exploit is public, indicating potential real...
CVE-2026-5256
CVE-2026-5256 affects code-projects Simple Laundry System 1.0. The vulnerability is in the Parameter Handler’s modify.php, where manipulation of the firstName parameter leads to SQL injection. Remote exploitation is possible, and the exploit has been published and may be used. The available conne...
CVE-2026-4581
The CVE-2026-4581 entry concerns code-projects Simple Laundry System 1.0. The vulnerability lies in the unknown function within the file /checklogin.php of the Parameters Handler, where manipulating the Username argument triggers a SQL injection. This can be exploited remotely, and exploits have ...