| CVE-2025-10621 |
critical |
9.8 |
9.8 |
|
|
fabian |
9mo ago |
A vulnerability was determined in SourceCodester Hotel Reservation System 1.0. The affected element is an unknown function of the file editroomimage.php. This manipulation of the argument ID causes s… |
| CVE-2025-10604 |
critical |
9.8 |
9.8 |
|
|
emiloi |
9mo ago |
A vulnerability was identified in PHPGurukul Online Discussion Forum 1.0. This affects an unknown part of the file /admin/edit_member.php. The manipulation of the argument ID leads to sql injection. … |
| CVE-2025-10603 |
critical |
9.8 |
9.8 |
|
|
emiloi |
9mo ago |
A vulnerability was determined in PHPGurukul Online Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /admin/admin_forum/search_result.php. Executing manipulation… |
| CVE-2025-10601 |
critical |
9.8 |
9.8 |
|
|
janobe |
9mo ago |
A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0. Affected is an unknown function of the file /admin/index.php. Such manipulation of the argument email leads to sql in… |
| CVE-2025-10600 |
critical |
9.8 |
9.8 |
|
|
janobe |
9mo ago |
A flaw has been found in SourceCodester Online Exam Form Submission 1.0. This impacts an unknown function of the file /register.php. This manipulation of the argument img causes unrestricted upload. … |
| CVE-2025-10599 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A security flaw has been discovered in itsourcecode Web-Based Internet Laboratory Management System 1.0. Impacted is the function User::AuthenticateUser of the file login.php. Performing manipulation… |
| CVE-2025-10598 |
critical |
9.8 |
9.8 |
|
|
mayurik |
9mo ago |
A vulnerability was identified in SourceCodester Pet Grooming Management Software 1.0. This issue affects some unknown processing of the file /admin/search_product.php. Such manipulation of the argum… |
| CVE-2025-10596 |
critical |
9.8 |
9.8 |
|
|
janobe |
9mo ago |
A vulnerability was found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument usn results in sql injection. The at… |
| CVE-2025-10439 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yordam Informatics Yordam Library Automation System allows SQL Injection.
This issue affects Yor… |
| CVE-2025-10565 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was determined in Campcodes Grocery Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=delete_receiving. Executing… |
| CVE-2025-10564 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=delete_category. Performing manipulation of the argument ID… |
| CVE-2025-34186 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
Ilevia EVE X1/X5 Server version ≤ 4.7.18.0.eden contains a vulnerability in its authentication mechanism. Unsanitized input is passed to a system() call for authentication, allowing attackers to inje… |
| CVE-2025-10563 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability has been found in Campcodes Grocery Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=save_category. Such manipulation of the argument ID l… |
| CVE-2025-10562 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown function of the file /ajax.php?action=save_product. This manipulation of the argument ID causes sql … |
| CVE-2024-13149 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 200 - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Arma Store Armalife allow… |
| CVE-2025-7744 |
critical |
9.8 |
9.8 |
|
|
dolusoft |
9mo ago |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dolusoft Omaspot allows SQL Injection.
This issue affects Omaspot: before 12.09.2025. |
| CVE-2025-7743 |
critical |
9.6 |
9.6 |
|
|
dolusoft |
9mo ago |
Cleartext Transmission of Sensitive Information vulnerability in Dolusoft Omaspot allows Interception, Privilege Escalation.
This issue affects Omaspot: before 12.09.2025. |
| CVE-2025-10482 |
critical |
9.8 |
9.8 |
|
|
janobe |
9mo ago |
A vulnerability was detected in SourceCodester Online Student File Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument Username resul… |
| CVE-2025-10480 |
critical |
9.8 |
9.8 |
|
|
janobe |
9mo ago |
A weakness has been identified in SourceCodester Online Student File Management System 1.0. This affects an unknown function of the file /save_file.php. Executing manipulation can lead to unrestricte… |
| CVE-2025-10479 |
critical |
9.8 |
9.8 |
|
|
janobe |
9mo ago |
A security flaw has been discovered in SourceCodester Online Student File Management System 1.0. The impacted element is an unknown function of the file /index.php. Performing manipulation of the arg… |
| CVE-2025-10477 |
critical |
9.8 |
9.8 |
|
|
kidaze |
9mo ago |
A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown function of the file /Profilers/PriProfile/eligibilit… |
| CVE-2025-10473 |
critical |
9.8 |
9.8 |
|
|
ruoyi |
9mo ago |
A security flaw has been discovered in yangzongzhuan RuoYi up to 4.8.1. This impacts the function filterKeyword of the file /com/ruoyi/common/utils/sql/SqlUtil.java of the component Blacklist Handler… |
| CVE-2025-10459 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/all-appointment.php. The manipulation of the argument delid res… |
| CVE-2025-10448 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A flaw has been found in Campcodes Online Job Finder System 1.0. This affects an unknown function of the file /index.php?q=result&searchfor=bycompany. This manipulation of the argument Search causes … |
| CVE-2025-10447 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was detected in Campcodes Online Job Finder System 1.0. The impacted element is an unknown function of the file /eris/applicationform.php. The manipulation of the argument picture res… |
| CVE-2025-10446 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/cust_searchfrm.php?action=edit. The man… |
| CVE-2025-10445 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A weakness has been identified in Campcodes Computer Sales and Inventory System 1.0. Impacted is an unknown function of the file /pages/us_transac.php?action=add. Executing manipulation of the argume… |
| CVE-2025-10444 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A security flaw has been discovered in Campcodes Online Job Finder System 1.0. This issue affects some unknown processing of the file /advancesearch.php. Performing manipulation of the argument Usern… |
| CVE-2025-10436 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A weakness has been identified in Campcodes Computer Sales and Inventory System 1.0. The impacted element is an unknown function of the file /pages/sup_searchfrm.php?action=edit. This manipulation of… |
| CVE-2025-10435 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A security flaw has been discovered in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/cust_edit1.php. The manipulation of the argume… |
| CVE-2025-10426 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A security flaw has been discovered in itsourcecode Online Laundry Management System 1.0. This affects an unknown function of the file /login.php. Performing manipulation of the argument Username res… |
| CVE-2025-10425 |
critical |
9.8 |
9.8 |
|
|
1000projects |
9mo ago |
A vulnerability was identified in 1000projects Online Student Project Report Submission and Evaluation System 1.0. The impacted element is an unknown function of the file /admin/controller/student_co… |
| CVE-2025-10424 |
critical |
9.8 |
9.8 |
|
|
1000projects |
9mo ago |
A vulnerability was determined in 1000projects Online Student Project Report Submission and Evaluation System 1.0. The affected element is an unknown function of the file /admin/controller/faculty_co… |
| CVE-2025-10417 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A security flaw has been discovered in Campcodes Grocery Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=delete_product. The manipulation of the argument … |
| CVE-2025-10416 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was identified in Campcodes Grocery Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=delete_supplier. The manipulation of the argument ID … |
| CVE-2025-10415 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was determined in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown function of the file /ajax.php?action=save_supplier. Executing manipulation of the argument… |
| CVE-2025-10414 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. The impacted element is an unknown function of the file /ajax.php?action=save_customer. Performing manipulation of the a… |
| CVE-2025-10413 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability has been found in Campcodes Grocery Sales and Inventory System 1.0. The affected element is an unknown function of the file /ajax.php?action=delete_customer. Such manipulation of the … |
| CVE-2025-10410 |
critical |
9.8 |
9.8 |
|
|
rems |
9mo ago |
A security vulnerability has been detected in SourceCodester Link Status Checker 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument proxy leads to se… |
| CVE-2025-10405 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A vulnerability was determined in itsourcecode Baptism Information Management System 1.0. Affected is an unknown function of the file /listbaptism.php. This manipulation of the argument bapt_id cause… |
| CVE-2025-10404 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A vulnerability was found in itsourcecode Baptism Information Management System 1.0. This impacts an unknown function of the file /rptbaptismal.php. The manipulation of the argument ID results in sql… |
| CVE-2025-10403 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown function of the file /admin/view-enquiry.php. The manipulation of the argument viewid leads … |
| CVE-2025-10402 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A flaw has been found in PHPGurukul Beauty Parlour Management System 1.1. The impacted element is an unknown function of the file /admin/readenq.php. Executing manipulation of the argument delid can … |
| CVE-2025-10396 |
critical |
9.8 |
9.8 |
|
|
mayurik |
9mo ago |
A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/edit_role.php. Executing manipulation of… |
| CVE-2025-10359 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A vulnerability was detected in Wavlink WL-WN578W2 221110. This impacts the function sub_404DBC of the file /cgi-bin/wireless.cgi. The manipulation of the argument macAddr results in os command injec… |
| CVE-2025-10358 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A security vulnerability has been detected in Wavlink WL-WN578W2 221110. This affects the function sub_404850 of the file /cgi-bin/wireless.cgi. The manipulation of the argument delete_list leads to … |
| CVE-2025-10329 |
critical |
9.8 |
9.8 |
|
|
unmark |
9mo ago |
A vulnerability was detected in cdevroe unmark up to 1.9.3. This affects an unknown part of the file /application/controllers/Marks.php. The manipulation of the argument url results in server-side re… |
| CVE-2025-10328 |
critical |
9.8 |
9.8 |
|
|
sourcefabric |
9mo ago |
A security vulnerability has been detected in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this issue is some unknown functionality of the file /htdocs/api/playlist/playsinglefile.php. The mani… |
| CVE-2025-10327 |
critical |
9.8 |
10.0 |
EXP |
|
sourcefabric |
9mo ago |
A weakness has been identified in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this vulnerability is an unknown functionality of the file /htdocs/api/playlist/shuffle.php. Executing manipulatio… |
| CVE-2025-10326 |
critical |
9.8 |
9.8 |
|
|
sourcefabric |
9mo ago |
A security flaw has been discovered in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected is an unknown function of the file /htdocs/api/playlist/single.php. Performing manipulation of the argument play… |
| CVE-2025-10324 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A vulnerability was determined in Wavlink WL-WN578W2 221110. This affects the function sub_401C5C of the file firewall.cgi. This manipulation of the argument pingFrmWANFilterEnabled/blockSynFloodEnab… |
| CVE-2025-10323 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A vulnerability was found in Wavlink WL-WN578W2 221110. The impacted element is the function sub_409184 of the file /wizard_rep.shtml. The manipulation of the argument sel_EncrypTyp results in comman… |
| CVE-2025-10251 |
critical |
9.8 |
9.8 |
|
|
foxcms |
9mo ago |
A vulnerability was detected in FoxCMS up to 1.24. Affected by this issue is the function batchCope of the file /app/admin/controller/Images.php. The manipulation of the argument ids results in sql i… |
| CVE-2025-10218 |
critical |
9.8 |
9.8 |
|
|
lostvip |
9mo ago |
A flaw has been found in lostvip-com ruoyi-go 2.1. This affects the function SelectListPage of the file modules/system/dao/SysRoleDao.go of the component Background Management Page. This manipulation… |
| CVE-2025-54236 |
critical |
9.1 |
10.0 |
KEVEXP |
|
adobe |
9mo ago |
Adobe Commerce and Magento Open Source contain an improper input validation vulnerability that could allow an attacker to take over customer accounts through the Commerce REST API. |
| CVE-2025-10123 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub_415028 of the file /goform/set_static_leases. Executing manipulation of the argument… |
| CVE-2025-10118 |
critical |
9.8 |
9.8 |
|
|
emiloi |
9mo ago |
A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. The affected element is an unknown function of the file /login.php. The manipulati… |
| CVE-2025-10114 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A vulnerability was found in PHPGurukul Small CRM 4.0. Affected by this issue is some unknown functionality of the file /profile.php. The manipulation of the argument Name results in sql injection. T… |
| CVE-2025-10113 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A security vulnerability has been detected in itsourcecode Student Information Management System 1.0. This affects an unknown function of the file /admin/modules/room/index.php. Such manipulation of … |
| CVE-2025-10112 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A weakness has been identified in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/department/index.php. This manipulatio… |
| CVE-2025-10111 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/instructor/index.php. The manipul… |
| CVE-2025-10109 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was determined in Campcodes Online Loan Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_payment. Executing manipulation of the ar… |
| CVE-2025-10108 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A vulnerability was found in Campcodes Online Loan Management System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_loan. Performing manipulation of the argument ID … |
| CVE-2025-10104 |
critical |
9.8 |
9.8 |
|
|
carmelo |
9mo ago |
A security vulnerability has been detected in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /review_search.php. The manipulation of the argument txtsearch… |
| CVE-2025-10103 |
critical |
9.8 |
9.8 |
|
|
carmelo |
9mo ago |
A weakness has been identified in code-projects Online Event Judging System 1.0. This impacts an unknown function of the file /home.php. Executing manipulation of the argument main_event can lead to … |
| CVE-2025-10102 |
critical |
9.8 |
9.8 |
|
|
carmelo |
9mo ago |
A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown function of the file /index.php. Performing manipulation of the argument Username results… |
| CVE-2025-10100 |
critical |
9.8 |
9.8 |
|
|
oretnom23 |
9mo ago |
A vulnerability was detected in SourceCodester Simple Forum Discussion System 1.0. This impacts an unknown function of the file /admin_class.php?action=login. Performing manipulation of the argument … |
| CVE-2025-10092 |
critical |
9.8 |
9.8 |
|
|
jinher |
9mo ago |
A vulnerability was found in Jinher OA up to 1.2. This impacts an unknown function of the file /c6/Jhsoft.Web.projectmanage/TaskManage/AddTask.aspx/?Type=add of the component XML Handler. The manipul… |
| CVE-2025-10091 |
critical |
9.8 |
9.8 |
|
|
jinher |
9mo ago |
A vulnerability has been found in Jinher OA up to 1.2. This affects an unknown function of the file /c6/Jhsoft.Web.projectmanage/ProjectManage/XmlHttp.aspx/?Type=add of the component XML Handler. The… |
| CVE-2025-10090 |
critical |
9.8 |
9.8 |
|
|
jinher |
9mo ago |
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead t… |
| CVE-2025-10082 |
critical |
9.8 |
9.8 |
|
|
razormist |
9mo ago |
A vulnerability has been found in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file /admin/manage-admins.php. Such manipulation of the argument email leads to sql … |
| CVE-2025-10079 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A flaw has been found in PHPGurukul Small CRM 4.0. Affected by this vulnerability is an unknown functionality of the file /get-quote.php. Executing manipulation of the argument Contact can lead to sq… |
| CVE-2025-10078 |
critical |
9.8 |
9.8 |
|
|
razormist |
9mo ago |
A vulnerability was detected in SourceCodester Online Polling System 1.0. Affected is an unknown function of the file /admin/candidates.php. Performing manipulation of the argument ID results in sql … |
| CVE-2025-10077 |
critical |
9.8 |
9.8 |
|
|
razormist |
9mo ago |
A security vulnerability has been detected in SourceCodester Online Polling System 1.0. This impacts an unknown function of the file /registeracc.php. Such manipulation of the argument email leads to… |
| CVE-2025-10076 |
critical |
9.8 |
9.8 |
|
|
razormist |
9mo ago |
A weakness has been identified in SourceCodester Online Polling System 1.0. This affects an unknown function of the file /manage-profile.php. This manipulation of the argument email causes sql inject… |
| CVE-2025-10068 |
critical |
9.8 |
9.8 |
|
|
emiloi |
9mo ago |
A flaw has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin/admin_forum/add_views.php. Executing manipulation of the argument ID can lead to… |
| CVE-2025-10062 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A vulnerability was determined in itsourcecode Student Information Management System 1.0. This affects an unknown part of the file /admin/login.php. Executing manipulation of the argument uname can l… |
| CVE-2025-10033 |
critical |
9.8 |
9.8 |
|
|
emiloimagtolis |
9mo ago |
A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin. Such manipulation of the argument Username leads to sql injection. The… |
| CVE-2025-10031 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A security vulnerability has been detected in Campcodes Grocery Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=delete_sales. The manipulation of the argu… |
| CVE-2025-10030 |
critical |
9.8 |
9.8 |
|
|
campcodes |
9mo ago |
A weakness has been identified in Campcodes Grocery Sales and Inventory System 1.0. This issue affects some unknown processing of the file /ajax.php?action=save_receiving. Executing manipulation of t… |
| CVE-2025-10025 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A vulnerability has been found in PHPGurukul Online Course Registration 3.1. Affected is an unknown function of the file /admin/semester.php. The manipulation of the argument semester leads to sql in… |
| CVE-2025-9935 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A vulnerability was determined in TOTOLINK N600R 4.3.0cu.7866_B20220506. This vulnerability affects the function sub_4159F8 of the file /web_cste/cgi-bin/cstecgi.cgi. Executing manipulation can lead … |
| CVE-2025-9934 |
critical |
9.8 |
9.8 |
|
|
|
9mo ago |
A vulnerability was found in TOTOLINK X5000R 9.1.0cu.2415_B20250515. This affects the function sub_410C34 of the file /cgi-bin/cstecgi.cgi. Performing manipulation of the argument pid results in comm… |
| CVE-2025-9933 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this issue is some unknown functionality of the file /admin/view-appointment.php. Such manipulation of t… |
| CVE-2025-9932 |
critical |
9.8 |
9.8 |
|
|
phpgurukul |
9mo ago |
A flaw has been found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this vulnerability is an unknown functionality of the file /admin/update-image.php. This manipulation of the argu… |
| CVE-2025-9930 |
critical |
9.8 |
9.8 |
|
|
1000projects |
9mo ago |
A security vulnerability has been detected in 1000projects Beauty Parlour Management System 1.0. This impacts an unknown function of the file /admin/contact-us.php. The manipulation of the argument m… |
| CVE-2025-9928 |
critical |
9.8 |
9.8 |
|
|
projectworlds |
9mo ago |
A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted element is an unknown function of the file /viewcategory.php. Performing manipulation of the argument t… |
| CVE-2025-9927 |
critical |
9.8 |
9.8 |
|
|
projectworlds |
9mo ago |
A vulnerability was identified in projectworlds Travel Management System 1.0. The affected element is an unknown function of the file /viewpackage.php. Such manipulation of the argument t1 leads to s… |
| CVE-2025-9926 |
critical |
9.8 |
9.8 |
|
|
projectworlds |
9mo ago |
A vulnerability was determined in projectworlds Travel Management System 1.0. Impacted is an unknown function of the file /viewsubcategory.php. This manipulation of the argument t1 causes sql injecti… |
| CVE-2025-9925 |
critical |
9.8 |
9.8 |
|
|
projectworlds |
9mo ago |
A vulnerability was found in projectworlds Travel Management System 1.0. This issue affects some unknown processing of the file /detail.php. The manipulation of the argument pid results in sql inject… |
| CVE-2025-9924 |
critical |
9.8 |
9.8 |
|
|
projectworlds |
9mo ago |
A vulnerability has been found in projectworlds Travel Management System 1.0. This vulnerability affects unknown code of the file /enquiry.php. The manipulation of the argument t2 leads to sql inject… |
| CVE-2025-55747 |
critical |
— |
9.5 |
|
|
|
9mo ago |
XWiki configuration files can be accessed through the webjars API |
| CVE-2025-9919 |
critical |
9.8 |
9.8 |
|
|
1000projects |
9mo ago |
A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects an unknown function of the file /admin/bwdates-reports-details.php. The manipulation of the argument … |
| CVE-2025-9847 |
critical |
9.8 |
9.8 |
|
|
scriptandtools |
9mo ago |
A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is an unknown function of the file register.php. This manipulation of the argument uimage causes unrestric… |
| CVE-2025-9840 |
critical |
9.8 |
9.8 |
|
|
angeljudesuarez |
9mo ago |
A weakness has been identified in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/gametype.php. Executing manipulation of the argument code c… |
| CVE-2025-9839 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing mani… |
| CVE-2025-9838 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A vulnerability was identified in itsourcecode Student Information Management System 1.0. Impacted is an unknown function of the file /admin/modules/subject/index.php. Such manipulation of the argume… |
| CVE-2025-9837 |
critical |
9.8 |
9.8 |
|
|
itsourcecode |
9mo ago |
A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of… |
| CVE-2025-9833 |
critical |
9.8 |
9.8 |
|
|
donbermoy |
9mo ago |
A vulnerability was detected in SourceCodester Online Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Login/login.php. Performing manipulation of t… |
| CVE-2025-9832 |
critical |
9.8 |
9.8 |
|
|
oretnom23 |
9mo ago |
A security vulnerability has been detected in SourceCodester Food Ordering Management System 1.0. Affected is an unknown function of the file /routers/register-router.php. Such manipulation of the ar… |
