Filtered by vendor Sourcecodester
Subscriptions
Total
408 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-9704 | 2 Janobe, Sourcecodester | 2 Water Billing System, Water Billing System | 2025-09-08 | 7.3 High |
| A security flaw has been discovered in SourceCodester Water Billing System 1.0. This impacts an unknown function of the file /viewbill.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-9705 | 2 Janobe, Sourcecodester | 2 Water Billing System, Water Billing System | 2025-09-08 | 7.3 High |
| A weakness has been identified in SourceCodester Water Billing System 1.0. Affected is an unknown function of the file /paybill.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. | ||||
| CVE-2025-9706 | 2 Janobe, Sourcecodester | 2 Water Billing System, Water Billing System | 2025-09-08 | 7.3 High |
| A security vulnerability has been detected in SourceCodester Water Billing System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2025-9757 | 2 Campcodes, Sourcecodester | 2 Courier Management System, Courier Management System | 2025-09-08 | 7.3 High |
| A vulnerability was determined in Campcodes/SourceCodester Courier Management System 1.0. Affected is the function Login of the file /ajax.php. This manipulation of the argument email causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2025-9759 | 2 Campcodes, Sourcecodester | 2 Courier Management System, Courier Management System | 2025-09-08 | 7.3 High |
| A security flaw has been discovered in Campcodes/SourceCodester Courier Management System 1.0. Affected by this issue is the function Signup of the file /ajax.php. Performing manipulation of the argument lastname results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-9832 | 2 Oretnom23, Sourcecodester | 2 Food Ordering Management System, Food Ordering Management System | 2025-09-05 | 7.3 High |
| A security vulnerability has been detected in SourceCodester Food Ordering Management System 1.0. Affected is an unknown function of the file /routers/register-router.php. Such manipulation of the argument phone leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2025-9833 | 2 Donbermoy, Sourcecodester | 2 Online Farm Management System, Online Farm Management System | 2025-09-05 | 7.3 High |
| A vulnerability was detected in SourceCodester Online Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Login/login.php. Performing manipulation of the argument uname results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used. | ||||
| CVE-2025-57425 | 2 Remyandrade, Sourcecodester | 2 Faq Management System, Faq Management System | 2025-09-04 | 6.1 Medium |
| A Stored Cross-Site Scripting (XSS) vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint. | ||||
| CVE-2025-9771 | 2 Neville, Sourcecodester | 2 Eye Clinic Management System, Eye Clinic Management System | 2025-09-03 | 7.3 High |
| A security vulnerability has been detected in SourceCodester Eye Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file /main/search_index_Diagnosis.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2025-9788 | 2 Campcodes, Sourcecodester | 2 School Log Management System, School Log Management System | 2025-09-03 | 7.3 High |
| A vulnerability was determined in SourceCodester/Campcodes School Log Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin_class.php. Executing manipulation of the argument id_no can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2025-9789 | 2 Fabianros, Sourcecodester | 2 Online Hotel Reservation System, Online Hotel Reservation System | 2025-09-03 | 7.3 High |
| A vulnerability was identified in SourceCodester Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file /admin/edituser.php. The manipulation of the argument userid leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used. | ||||
| CVE-2025-9790 | 2 Fabianros, Sourcecodester | 2 Hotel Reservation System, Online Hotel Reservation System | 2025-09-03 | 7.3 High |
| A security flaw has been discovered in SourceCodester Hotel Reservation System 1.0. This affects an unknown part of the file /admin/updateabout.php. The manipulation of the argument address results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-9476 | 2 Nelzkie15, Sourcecodester | 2 Human Resource Information System, Human Resource Information System | 2025-09-02 | 7.3 High |
| A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /Superadmin_Dashboard/process/editemployee_process.php. Such manipulation of the argument employee_file201 leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | ||||
| CVE-2025-9475 | 2 Nelzkie15, Sourcecodester | 2 Human Resource Information System, Human Resource Information System | 2025-09-02 | 7.3 High |
| A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin_Dashboard/process/editemployee_process.php. This manipulation of the argument employee_file201 causes unrestricted upload. The attack may be initiated remotely. The exploit has been published and may be used. | ||||
| CVE-2025-9473 | 2 Oretnom23, Sourcecodester | 2 Online Bank Management System, Online Bank Management System | 2025-09-02 | 7.3 High |
| A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2025-9304 | 2 Oretnom23, Sourcecodester | 2 Online Bank Management System, Online Bank Management System | 2025-08-23 | 7.3 High |
| A weakness has been identified in SourceCodester Online Bank Management System 1.0. Impacted is an unknown function of the file /bank/show.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from a remote location. The exploit has been made available to the public and could be exploited. | ||||
| CVE-2025-9305 | 2 Oretnom23, Sourcecodester | 2 Online Bank Management System, Online Bank Management System | 2025-08-23 | 7.3 High |
| A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. The affected element is an unknown function of the file /bank/mnotice.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2025-9021 | 2 Oretnom23, Sourcecodester | 2 Online Bank Management System, Online Bank Management System | 2025-08-21 | 7.3 High |
| A vulnerability was determined in SourceCodester Online Bank Management System up to 1.0. This vulnerability affects unknown code of the file /bank/transfer.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. | ||||
| CVE-2025-9022 | 2 Oretnom23, Sourcecodester | 2 Online Bank Management System, Online Bank Management System | 2025-08-21 | 7.3 High |
| A vulnerability was identified in SourceCodester Online Bank Management System up to 1.0. This issue affects some unknown processing of the file /bank/statements.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. | ||||
| CVE-2025-8973 | 2 Oretnom23, Sourcecodester | 2 Cashier Queuing System, Cashier Queuing System | 2025-08-21 | 7.3 High |
| A vulnerability has been found in SourceCodester Cashier Queuing System 1.0. Affected is an unknown function of the file /Actions.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. | ||||