CVEs from 2025
Total
8,891
critical
critical 1,340
high
high 2,024
medium
medium 2,003
low
low 202
% Critical
15.1%
% with KEV
2.0%
% with exploit
2.8%
Top vendors
- qualcomm 1,123
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- redhat 108
- microsoft 107
- portabilis 94
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- gcp 29
- inventory_management_system 28
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-14571 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /borrow_book.php. Such manipulation of the arg… | |||
| CVE-2025-14570 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_admin.php. This manipulation of the argumen… | |||
| CVE-2025-14566 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The impacted element is an unknown function of the file /Profilers/SProfile/reg.php… | |||
| CVE-2025-14565 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown function of the file /Profilers/SProfile/login1.php. … | |||
| CVE-2025-14537 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in code-projects Class and Exam Timetable Management 1.0. Affected by this issue is some unknown functionality of the file /preview7.php. This manipulation of the argum… | |||
| CVE-2025-14536 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in code-projects Class and Exam Timetable Management 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php of the component Login.… | |||
| CVE-2025-14529 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in Campcodes Retro Basketball Shoes Online Store 1.0. The affected element is an unknown function of the file /admin/admin_running.php. This manipulation of the argument pid cau… | |||
| CVE-2025-14527 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in projectworlds Advanced Library Management System 1.0. This vulnerability affects unknown code of the file /view_book.php. Executing a manipulation of the argument bo… | |||
| CVE-2025-14522 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. The impacted element is an unknown function of the file /Public/Kindeditor/php/upload_json.php. Performing … | |||
| CVE-2025-14518 | critical | 9.8 | 9.8 | 6mo ago | PowerJob has a server-side request forgery vulnerability in PingPongUtils.java | |||
| CVE-2025-14515 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in Campcodes Supplier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/add_unit.php. Such manipulation of the argume… | |||
| CVE-2025-14514 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in Campcodes Supplier Management System 1.0. Affected is an unknown function of the file /admin/add_distributor.php. This manipulation of the argument txtDistributorAddress caus… | |||
| CVE-2025-14337 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was determined in itsourcecode Student Management System 1.0. This affects an unknown part of the file /new_grade.php. This manipulation of the argument grade causes sql injection. Th… | |||
| CVE-2025-14336 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue is some unknown functionality of the file /promote.php. The manipulation of the argument sy results in … | |||
| CVE-2025-14335 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /new_school_year.php. The manipulation of the argu… | |||
| CVE-2025-14334 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /new_adviser.php. Executing manipulation of the argument Name can lead to sql injectio… | |||
| CVE-2025-12504 | critical | 9.8 | 9.8 | 6mo ago | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321. | |||
| CVE-2025-14285 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in code-projects Employee Profile Management System 1.0. Affected is an unknown function of the file edit_personnel.php. The manipulation of the argument per_id results in s… | |||
| CVE-2025-14258 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newsubject.php. The manipulation of the argument … | |||
| CVE-2025-14257 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /newrecord.php. Executing manipulation of the argument ID can lead to sql injection. T… | |||
| CVE-2025-14256 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /newcurriculm.php. Performing manipulation of the argument ID results in sql i… | |||
| CVE-2025-14251 | critical | 9.8 | 9.8 | 6mo ago | A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function of the file /admin/ of the component Admin Login. Such manipulation of the arg… | |||
| CVE-2025-14250 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function of the file /user_contact.php. This manipulation of the argument Name causes sq… | |||
| CVE-2025-14249 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown function of the file /user_school.php. The manipulation of the argument product_id … | |||
| CVE-2025-14248 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in code-projects Simple Shopping Cart 1.0. Impacted is an unknown function of the file /adminlogin.php. The manipulation of the argument admin_username leads to sql inj… | |||
| CVE-2025-14247 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was determined in code-projects Simple Shopping Cart 1.0. This issue affects some unknown processing of the file /Admin/additems.php. Executing manipulation of the argument item_name … | |||
| CVE-2025-14246 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in code-projects Simple Shopping Cart 1.0. This vulnerability affects unknown code of the file /Customers/settings.php. Performing manipulation of the argument user_id resul… | |||
| CVE-2025-14245 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in IdeaCMS up to 1.8. This affects the function whereRaw of the file app/common/logic/index/Coupon.php. Such manipulation of the argument params leads to sql injection.… | |||
| CVE-2025-14227 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d958. This issue affects some unknown processing of the file /edit.php. The manipulation re… | |||
| CVE-2025-14226 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /edit_user.php. The manipulation of the argument fname leads to sql i… | |||
| CVE-2025-14224 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in Yottamaster DM2, DM3 and DM200 up to 1.2.23/1.9.12. Affected by this issue is some unknown functionality of the component File Upload. Performing manipulation results in … | |||
| CVE-2025-14223 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in code-projects Simple Leave Manager 1.0. Affected by this vulnerability is an unknown functionality of the file /request.php. Such manipulation of the argument staff_… | |||
| CVE-2025-14218 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in code-projects Currency Exchange System 1.0. The affected element is an unknown function of the file /editotheraccount.php. Performing manipulation of the argume… | |||
| CVE-2025-14217 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in code-projects Currency Exchange System 1.0. Impacted is an unknown function of the file /edittrns.php. Such manipulation of the argument ID leads to sql injection. T… | |||
| CVE-2025-14216 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was determined in code-projects Currency Exchange System 1.0. This issue affects some unknown processing of the file /viewserial.php. This manipulation of the argument ID causes sql i… | |||
| CVE-2025-14215 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in code-projects Currency Exchange System 1.0. This vulnerability affects unknown code of the file /edit.php. The manipulation of the argument ID results in sql injection. T… | |||
| CVE-2025-14212 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this issue is some unknown functionality of the file /member_search.php. Executing a manipulation of the arg… | |||
| CVE-2025-14211 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in projectworlds Advanced Library Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /delete_book.php. Performing a manipulatio… | |||
| CVE-2025-14210 | critical | 9.8 | 9.8 | 6mo ago | A security vulnerability has been detected in projectworlds Advanced Library Management System 1.0. Affected is an unknown function of the file /delete_member.php. Such manipulation of the argument u… | |||
| CVE-2025-14209 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in Campcodes School File Management System 1.0. This impacts an unknown function of the file /update_query.php. This manipulation of the argument stud_id causes sql inj… | |||
| CVE-2025-14199 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administratio… | |||
| CVE-2025-14182 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in Sobey Media Convergence System 2.0/2.1. This vulnerability affects unknown code of the file /sobey-mchEditor/watermark/upload. The manipulation of the argument File … | |||
| CVE-2025-14094 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in Edimax BR-6478AC V3 1.0.15. The affected element is the function sub_44CCE4 of the file /boafrm/formSysCmd. This manipulation of the argument sysCmd causes os command injecti… | |||
| CVE-2025-14093 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in Edimax BR-6478AC V3 1.0.15. Impacted is the function sub_416990 of the file /boafrm/formTracerouteDiagnosticRun. The manipulation of the argument host results in os co… | |||
| CVE-2025-14004 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in dayrui XunRuiCMS up to 4.7.1. Affected is an unknown function of the file /admind45f74adbd95.php?c=email&m=add of the component Email Setting Handler. Performin… | |||
| CVE-2025-13815 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestr… | |||
| CVE-2025-13814 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in moxi159753 Mogu Blog v2 up to 5.2. Impacted is the function LocalFileServiceImpl.uploadPictureByUrl of the file /file/uploadPicsByUrl. The manipulation results … | |||
| CVE-2025-13806 | critical | 9.8 | 9.8 | 6mo ago | NutzBoot Incorrect Privilege Assignment vulnerability | |||
| CVE-2025-13800 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in ADSLR NBR1005GPEV2 250814-r037c. This issue affects the function set_mesh_disconnect of the file /send_order.cgi. The manipulation of the argument mac results in command … | |||
| CVE-2025-13799 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in ADSLR NBR1005GPEV2 250814-r037c. This vulnerability affects the function ap_macfilter_del of the file /send_order.cgi. The manipulation of the argument mac leads to … | |||
| CVE-2025-13798 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in ADSLR NBR1005GPEV2 250814-r037c. This affects the function ap_macfilter_add of the file /send_order.cgi. Executing manipulation of the argument mac can lead to command inject… | |||
| CVE-2025-13797 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in ADSLR B-QE2W401 250814-r037c. Affected by this issue is the function parameterdel_swifimac of the file /send_order.cgi. Performing manipulation of the argument del_swi… | |||
| CVE-2025-13788 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in Chanjet CRM up to 20251106. The impacted element is an unknown function of the file /tools/upgradeattribute.php. The manipulation of the argument gblOrgID leads to s… | |||
| CVE-2025-13786 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in taosir WTCMS up to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. Impacted is the function fetch of the file /index.php. Performing manipulation of the argument content res… | |||
| CVE-2025-13783 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in taosir WTCMS up to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. This affects the function check/uncheck/delete of the file application/Comment/Controller/Commentad… | |||
| CVE-2025-13782 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in taosir WTCMS up to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. Affected by this issue is the function delete of the file application/Admin/Controller/SlideController.c… | |||
| CVE-2025-65085 | critical | 9.8 | 9.8 | 6mo ago | A Heap-based Buffer Overflow vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose inform… | |||
| CVE-2025-65084 | critical | 9.8 | 9.8 | 6mo ago | An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information … | |||
| CVE-2025-13585 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in itsourcecode COVID Tracking System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument code results in sql injecti… | |||
| CVE-2025-13583 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in code-projects Question Paper Generator 1.0. This affects an unknown part of the file /signupscript.php of the component POST Parameter Handler. Executing manipulatio… | |||
| CVE-2025-13582 | critical | 9.8 | 9.8 | 6mo ago | A security flaw has been discovered in code-projects Jonnys Liquor 1.0. Affected by this issue is some unknown functionality of the file /detail.php of the component GET Parameter Handler. Performing… | |||
| CVE-2025-13578 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in code-projects Library System 1.0. This affects an unknown function of the file /index.php of the component Login. The manipulation of the argument Username leads to … | |||
| CVE-2025-13572 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /delete_admin.php. The manipulation of the argument admin_id leads to … | |||
| CVE-2025-13562 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was identified in D-Link DIR-852 1.00. This issue affects some unknown processing of the file /gena.cgi. Such manipulation of the argument service leads to command injection. The atta… | |||
| CVE-2025-13561 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was determined in SourceCodester Company Website CMS 1.0. This vulnerability affects unknown code of the file /admin/index.php. This manipulation of the argument Username causes sql i… | |||
| CVE-2025-13560 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/reset-password.php. The manipulation of the argument email results in sql injectio… | |||
| CVE-2025-13557 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability has been found in Campcodes Online Polling System 1.0. Affected by this issue is some unknown functionality of the file /registeracc.php. The manipulation of the argument email leads … | |||
| CVE-2025-13556 | critical | 9.8 | 9.8 | 6mo ago | A flaw has been found in Campcodes Online Polling System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/checklogin.php. Executing a manipulation of the argument my… | |||
| CVE-2025-13555 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in Campcodes School File Management System 1.0. Affected is an unknown function of the file /index.php of the component Login. Performing a manipulation of the argument s… | |||
| CVE-2025-13554 | critical | 9.8 | 9.8 | 6mo ago | A security vulnerability has been detected in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /index.php of the component Login. Such manipulation of the argume… | |||
| CVE-2025-13546 | critical | 9.8 | 9.8 | 6mo ago | A vulnerability was detected in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cecdb0cad3. Affected by this issue is some unknown functionality of the file /results.php of the compone… | |||
| CVE-2025-13544 | critical | 9.8 | 9.8 | 6mo ago | A weakness has been identified in ashraf-kabir travel-agency up to 1f25aa03544bc5fb7a9e846f8a7879cecdb0cad3. Affected is an unknown function of the file /customer_register.php. Executing manipulation… | |||
| CVE-2025-13485 | critical | 9.8 | 9.8 | 7mo ago | A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=login. The manipulation of the argument … | |||
| CVE-2025-13451 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql in… | |||
| CVE-2025-13449 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was found in code-projects Online Shop Project 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument Password results in sql injecti… | |||
| CVE-2025-13442 | critical | 9.8 | 9.8 | 7mo ago | A security vulnerability has been detected in UTT 进取 750W up to 3.2.2-191225. Affected by this vulnerability is the function system of the file /goform/formPdbUpConfig. Such manipulation of the argum… | |||
| CVE-2025-13424 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability has been found in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /admin/add_product.php. The manipulation of the argument txtProductName leads … | |||
| CVE-2025-13422 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/change_s_pwd.php. Performing manipulation… | |||
| CVE-2025-13421 | critical | 9.8 | 9.8 | 7mo ago | A security vulnerability has been detected in itsourcecode Human Resource Management System 1.0. Impacted is an unknown function of the file /src/store/NoticeStore.php. Such manipulation of the argum… | |||
| CVE-2025-13420 | critical | 9.8 | 9.8 | 7mo ago | A weakness has been identified in itsourcecode Human Resource Management System 1.0. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argumen… | |||
| CVE-2025-13411 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin_football.php. Performing a manipula… | |||
| CVE-2025-13410 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability has been found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected is an unknown function of the file /admin/receipt.php. Such manipulation of the argument tid leads to sql… | |||
| CVE-2025-13396 | critical | 9.8 | 9.8 | 7mo ago | A weakness has been identified in code-projects Courier Management System 1.0. This affects an unknown function of the file /add-office.php. This manipulation of the argument OfficeName causes sql in… | |||
| CVE-2025-10437 | critical | 9.8 | 9.8 | 7mo ago | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eksagate Electronic Engineering and Computer Industry Trade Inc. Webpack Management System allows… | |||
| CVE-2025-13344 | critical | 9.8 | 9.8 | 7mo ago | A weakness has been identified in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=login. This manipulation o… | |||
| CVE-2025-13323 | critical | 9.8 | 9.8 | 7mo ago | A security flaw has been discovered in code-projects Simple Pizza Ordering System 1.0. Affected is an unknown function of the file /listorder.php. Performing manipulation of the argument ID results i… | |||
| CVE-2025-13303 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was determined in code-projects Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /search-edit.php. This manipulation of the argument Con… | |||
| CVE-2025-13302 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was identified in code-projects Courier Management System 1.0. This affects an unknown part of the file /add-new-officer.php. Such manipulation of the argument ManagerName leads to sq… | |||
| CVE-2025-13301 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /subject/controller.php. The mani… | |||
| CVE-2025-13300 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected is an unknown function of the file /settings/controller.php. The manipulation leads to sql… | |||
| CVE-2025-13299 | critical | 9.8 | 9.8 | 7mo ago | A flaw has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. This impacts an unknown function of the file /user/controller.php. Executing a manipulation can lead to sql … | |||
| CVE-2025-13298 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was detected in itsourcecode Web-Based Internet Laboratory Management System 1.0. This affects an unknown function of the file /enrollment/controller.php. Performing a manipulation re… | |||
| CVE-2025-13297 | critical | 9.8 | 9.8 | 7mo ago | A security vulnerability has been detected in itsourcecode Web-Based Internet Laboratory Management System 1.0. The impacted element is an unknown function of the file /course/controller.php. Such ma… | |||
| CVE-2025-13291 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was found in Campcodes Supplier Management System 1.0. This affects an unknown part of the file /manufacturer/confirm_order.php. Performing a manipulation of the argument ID results i… | |||
| CVE-2025-13285 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was identified in itsourcecode Online Voting System 1.0. The affected element is an unknown function of the file /login.php. Such manipulation of the argument Username leads to sql in… | |||
| CVE-2025-13280 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was determined in CodeAstro Simple Inventory System 1.0. The impacted element is an unknown function of the file /index.php of the component Login. Executing a manipulation of the arg… | |||
| CVE-2025-13277 | critical | 9.8 | 9.8 | 7mo ago | A flaw has been found in code-projects Nero Social Networking Site 1.0. This issue affects some unknown processing of the file /friendsphoto.php. This manipulation of the argument ID causes sql injec… | |||
| CVE-2025-13272 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was identified in Campcodes School Fees Payment Management System 1.0. Affected is an unknown function of the file /manage_course.php. Such manipulation of the argument ID leads to sq… | |||
| CVE-2025-13271 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was determined in Campcodes School Fees Payment Management System 1.0. This impacts an unknown function of the file /ajax.php?action=login. This manipulation of the argument Username … | |||
| CVE-2025-13267 | critical | 9.8 | 9.8 | 7mo ago | A vulnerability was detected in SourceCodester Dental Clinic Appointment Reservation System 1.0. Impacted is an unknown function of the file /success.php. Performing manipulation of the argument user… |