CWE-74: Injection

This CVE describes a SQL injection vulnerability in SourceCodester Patients Waiting Area Queue Management System 1.0. Attackers can remotely exploit t...

This SQL injection vulnerability in PHPGurukul Tourism Management System 1.0 allows attackers to manipulate database queries through the uid parameter...

This SQL injection vulnerability in Student Information System 2.0 allows attackers to execute arbitrary SQL commands through the /register.php endpoi...

CVE-2025-13241 is an SQL injection vulnerability in code-projects Student Information System 2.0 that allows remote attackers to execute arbitrary SQL...

CVE-2025-13240 is an SQL injection vulnerability in code-projects Student Information System 2.0 that allows attackers to manipulate database queries ...

CVE-2025-13237 is an SQL injection vulnerability in itsourcecode Inventory Management System 1.0 that allows remote attackers to execute arbitrary SQL...

CVE-2025-13235 is an SQL injection vulnerability in itsourcecode Inventory Management System 1.0 that allows attackers to manipulate database queries ...

This vulnerability allows remote attackers to execute arbitrary SQL commands through the /index.php?q=single-item endpoint in itsourcecode Inventory M...

This SQL injection vulnerability in Simple Cafe Ordering System 1.0 allows attackers to manipulate database queries through the studentnum parameter i...

CVE-2025-13201 is an SQL injection vulnerability in code-projects Simple Cafe Ordering System 1.0 that allows attackers to execute arbitrary SQL comma...

CVE-2025-13169 is an SQL injection vulnerability in Simple Online Hotel Reservation System 1.0 that allows remote attackers to execute arbitrary SQL c...

CVE-2025-13170 is an SQL injection vulnerability in Simple Online Hotel Reservation System 1.0 that allows attackers to manipulate database queries vi...

This SQL injection vulnerability in SourceCodester Patients Waiting Area Queue Management System 1.0 allows attackers to manipulate database queries t...

CVE-2025-13121 is an SQL injection vulnerability in the Liketea 1.0.0 API endpoint that allows remote attackers to execute arbitrary SQL commands by m...

This vulnerability allows remote attackers to execute SQL injection attacks against SourceCodester Survey Application System 1.0 via the ID parameter ...

This SQL injection vulnerability in SourceCodester Survey Application System 1.0 allows attackers to manipulate database queries through the fullname ...

CVE-2025-12617 is a SQL injection vulnerability in itsourcecode Billing System 1.0 that allows remote attackers to execute arbitrary SQL commands via ...

CVE-2025-12337 is a SQL injection vulnerability in Campcodes Retro Basketball Shoes Online Store 1.0 that allows remote attackers to execute arbitrary...

This SQL injection vulnerability in Campcodes Retro Basketball Shoes Online Store 1.0 allows attackers to manipulate database queries through the /adm...

This SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows attackers to manipulate database queries through the email ...

This SQL injection vulnerability in code-projects Courier Management System 1.0 allows attackers to manipulate database queries through the OfficeName...

This CVE describes a SQL injection vulnerability in Nero Social Networking Site 1.0's deletemessage.php file. Attackers can manipulate the message_id ...

CVE-2025-12306 is a SQL injection vulnerability in Nero Social Networking Site 1.0 that allows remote attackers to execute arbitrary SQL commands via ...

CVE-2025-12292 is an SQL injection vulnerability in SourceCodester Point of Sales 1.0 that allows remote attackers to execute arbitrary SQL commands v...

This SQL injection vulnerability in SourceCodester Point of Sales 1.0 allows remote attackers to manipulate database queries through the Category para...

This CVE describes a SQL injection vulnerability in Abdullah-Hasan-Sajjad Online-School's studentLogin.php file, specifically in the Email parameter. ...

This SQL injection vulnerability in SourceCodester Online Student Result System 1.0 allows attackers to manipulate database queries through the ID par...

This CVE describes a SQL injection vulnerability in AMTT Hotel Broadband Operation System 1.0 affecting the /user/portal/get_expiredtime.php endpoint ...

This SQL injection vulnerability in Projectworlds Online Shopping System 1.0 allows attackers to execute arbitrary SQL commands via the 'keywords' par...

This SQL injection vulnerability in SourceCodester Best House Rental Management System 1.0 allows attackers to manipulate database queries through the...

CVE-2025-11736 is an SQL injection vulnerability in itsourcecode Online Examination System 1.0 that allows remote attackers to execute arbitrary SQL c...

This CVE describes a SQL injection vulnerability in SourceCodester Best Salon Management System 1.0. Attackers can manipulate the serv_id parameter in...

This CVE describes an SQL injection vulnerability in the Inferno Online Clothing Store's /log.php file, specifically in the cemail/password parameters...

This SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows attackers to manipulate database queries through the editid...

CVE-2025-11608 is an SQL injection vulnerability in code-projects E-Banking System 1.0 that allows remote attackers to execute arbitrary SQL commands ...

CVE-2025-11604 is a SQL injection vulnerability in projectworlds Online Ordering Food System 1.0 that allows attackers to manipulate database queries ...

This SQL injection vulnerability in SourceCodester Online Student Result System 1.0 allows attackers to manipulate database queries through the Userna...

CVE-2025-11599 is a SQL injection vulnerability in Campcodes Online Apartment Visitor Management System 1.0 that allows remote attackers to execute ar...

This vulnerability allows remote attackers to execute SQL injection attacks against code-projects E-Commerce Website 1.0 by manipulating the order_id ...

This vulnerability allows remote attackers to execute SQL injection attacks against Project Monitoring System 1.0 through the uid parameter in /usered...

This vulnerability allows attackers to execute arbitrary SQL commands through the txtspecialization parameter in the searchjob.php file of Online Job ...

CVE-2025-11582 is an SQL injection vulnerability in code-projects Online Job Search Engine 1.0 that allows remote attackers to execute arbitrary SQL c...

This SQL injection vulnerability in Gate Pass Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'fullname' param...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows remote attackers to execute arbitrary SQL commands via the Search para...

CVE-2025-11555 is an SQL injection vulnerability in Campcodes Online Learning Management System 1.0 that allows attackers to manipulate database queri...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows attackers to manipulate database queries through the supp_id parameter...

This SQL injection vulnerability in PHPGurukul Beauty Parlour Management System 1.1 allows remote attackers to execute arbitrary SQL commands through ...

This vulnerability allows remote attackers to execute SQL injection attacks via the 'delid' parameter in the /admin/new-appointment.php file of PHPGur...

This SQL injection vulnerability in PHPGurukul Beauty Parlour Management System 1.1 allows attackers to manipulate database queries through the 'delid...

This CVE describes a command injection vulnerability in D-Link DIR-852 routers that allows remote attackers to execute arbitrary commands on affected ...