Aggregator

Submit #590800 / VDB-311306

Submit #590784 / VDB-311305

A vulnerability, which was classified as critical, was found in code-projects Patient Record Management System 1.0. Affected is an unknown function of the file view_hematology.php. The manipulation of the argument itr_no leads to sql injection. This vulnerability is traded as CVE-2025-5762. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in PHPGurukul BP Monitoring Management System 1.0. This issue affects some unknown processing of the file /edit-family-member.php. The manipulation of the argument memberage leads to sql injection. The identification of this vulnerability is CVE-2025-5761. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in PHPGurukul Local Services Search Engine Management System 2.1. This vulnerability affects unknown code of the file /admin/edit-person-detail.php?editid=2. The manipulation of the argument editid leads to sql injection. This vulnerability was named CVE-2025-5759. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #590771 / VDB-308078

Submit #590749 / VDB-311304

A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. This affects an unknown part of the file /doctor.php. The manipulation of the argument doctorname leads to sql injection. This vulnerability is uniquely identified as CVE-2025-5758. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

Submit #590708 / VDB-311303

A vulnerability was found in code-projects Traffic Offense Reporting System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /save-reported.php. The manipulation of the argument offence_id/vehicle_no/driver_license/name/address/gender/officer_reporting/offence leads to cross site scripting. This vulnerability is handled as CVE-2025-5757. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #590654 / VDB-311302

Submit #590652 / VDB-311229

A vulnerability was found in code-projects Real Estate Property Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Admin/EditCity.php. The manipulation leads to sql injection. This vulnerability is known as CVE-2025-5756. The attack can be launched remotely. Furthermore, there is an exploit available.

MCMS是一款基于SpringBoot 2架构的内容管理系统，它主要用于管理和监控计算机网络中的各种设备和资源，MCMS可以帮助管理员轻松地配置、监视和维护网络设备，提供网络拓扑图、设备状态、流量监控、安全性管理等功能

Submit #590651 / VDB-311301

A vulnerability was found in SourceCodester Open Source Clinic Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /email_config.php. The manipulation of the argument email leads to sql injection. This vulnerability is traded as CVE-2025-5755. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #590649 / VDB-311300