Submit #600690: code-projects Simple Pizza Ordering System V1.0 SQL injection [Accepted]
Submit #600690 / VDB-313591
Aggregator
Submit #600689: code-projects Simple Pizza Ordering System V1.0 QL injection [Accepted]
5 months 3 weeks ago
Submit #600689 / VDB-313590
rom4j
Submit #600685: code-projects Simple Pizza Ordering System V1.0 SQL injection [Accepted]
5 months 3 weeks ago
Submit #600685 / VDB-313589
rom4j
Submit #600684: code-projects Simple Pizza Ordering System V1.0 SQL Injection [Accepted]
5 months 3 weeks ago
Submit #600684 / VDB-313588
rom4j
Submit #600683: code-projects Simple Pizza Ordering System V1.0 SQL injection [Accepted]
5 months 3 weeks ago
Submit #600683 / VDB-313587
rom4j
CVE-2025-6478 | CodeAstro Expense Management System 1.0 cross-site request forgery (EUVD-2025-18847)
5 months 3 weeks ago
A vulnerability was found in CodeAstro Expense Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery.
This vulnerability is handled as CVE-2025-6478. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2025-6477 | SourceCodester Student Result Management System 1.0 System Settings Page /script/admin/system School Name cross site scripting (EUVD-2025-18845)
5 months 3 weeks ago
A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /script/admin/system of the component System Settings Page. The manipulation of the argument School Name leads to cross site scripting.
This vulnerability is known as CVE-2025-6477. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6476 | SourceCodester Gym Management System 1.0 cross-site request forgery (EUVD-2025-18846)
5 months 3 weeks ago
A vulnerability was found in SourceCodester Gym Management System 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery.
This vulnerability is traded as CVE-2025-6476. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #600581: CodeAstro Expense Management System 1.0 Cross-Site Request Forgery [Accepted]
5 months 3 weeks ago
Submit #600581 / VDB-313586
yousufnihal
Submit #600559: SourceCodester Student Result Management System 1.0 Stored Cross Site Scripting [Accepted]
5 months 3 weeks ago
Submit #600559 / VDB-313585
RaulPACXXX
Submit #600558: SourceCodester Gym Management System V1.0 Cross-Site Request Forgery [Accepted]
5 months 3 weeks ago
Submit #600558 / VDB-313584
alc9700
CVE-2025-6475 | SourceCodester Student Result Management System 1.0 Manage Students Module manage_students cross site scripting (EUVD-2025-18843)
5 months 3 weeks ago
A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /script/admin/manage_students of the component Manage Students Module. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2025-6475. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #600550: SourceCodester Student Result Management System 1.0 Stored Cross Site Scripting [Accepted]
5 months 3 weeks ago
Submit #600550 / VDB-313583
RaulPACXXX
CVE-2025-6474 | code-projects Inventory Management System 1.0 /changeUsername.php user_id sql injection (EUVD-2025-18844)
5 months 3 weeks ago
A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /changeUsername.php. The manipulation of the argument user_id leads to sql injection.
This vulnerability was named CVE-2025-6474. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6473 | code-projects School Fees Payment System 1.0 /fees.php transcation_remark cross site scripting (EUVD-2025-18842)
5 months 3 weeks ago
A vulnerability, which was classified as problematic, was found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /fees.php. The manipulation of the argument transcation_remark leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-6473. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6472 | code-projects Online Bidding System 1.0 /showprod.php ID sql injection (EUVD-2025-18840)
5 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in code-projects Online Bidding System 1.0. Affected by this issue is some unknown functionality of the file /showprod.php. The manipulation of the argument ID leads to sql injection.
This vulnerability is handled as CVE-2025-6472. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6471 | code-projects Online Bidding System 1.0 /administrator aduser sql injection (EUVD-2025-18841)
5 months 3 weeks ago
A vulnerability classified as critical was found in code-projects Online Bidding System 1.0. Affected by this vulnerability is an unknown functionality of the file /administrator. The manipulation of the argument aduser leads to sql injection.
This vulnerability is known as CVE-2025-6471. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6470 | code-projects Online Bidding System 1.0 /bidlog.php ID sql injection (EUVD-2025-18839)
5 months 3 weeks ago
A vulnerability classified as critical has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /bidlog.php. The manipulation of the argument ID leads to sql injection.
This vulnerability is traded as CVE-2025-6470. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6469 | code-projects Online Bidding System 1.0 /details.php ID sql injection
5 months 3 weeks ago
A vulnerability was found in code-projects Online Bidding System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /details.php. The manipulation of the argument ID leads to sql injection.
The identification of this vulnerability is CVE-2025-6469. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-6468 | code-projects Online Bidding System 1.0 /bidnow.php ID sql injection (EUVD-2025-18838)
5 months 3 weeks ago
A vulnerability was found in code-projects Online Bidding System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /bidnow.php. The manipulation of the argument ID leads to sql injection.
This vulnerability was named CVE-2025-6468. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com