CWE-74: Injection

A critical SQL injection vulnerability exists in code-projects Chat System 1.0 through the /user/send_message.php file's msg parameter. Attackers can ...

CVE-2025-7187 is a critical SQL injection vulnerability in code-projects Chat System 1.0 that allows remote attackers to execute arbitrary SQL command...

This critical SQL injection vulnerability in Responsive Blog Site 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter i...

This critical SQL injection vulnerability in PHPGurukul Zoo Management System 2.1 allows remote attackers to execute arbitrary SQL commands via the 'c...

This critical SQL injection vulnerability in PHPGurukul Zoo Management System 2.1 allows attackers to manipulate database queries through the ID param...

CVE-2025-7156 is a critical SQL injection vulnerability in hitsz-ids airda version 0.0.3 that allows remote attackers to execute arbitrary SQL command...

This critical SQL injection vulnerability in Campcodes Advanced Online Voting System 1.0 allows remote attackers to execute arbitrary SQL commands via...

A critical SQL injection vulnerability exists in the itsourcecode Employee Management System up to version 1.0. Attackers can remotely exploit this vu...

This critical vulnerability in BoyunCMS allows remote attackers to execute arbitrary code by manipulating the db_pass parameter during installation. I...

A critical SQL injection vulnerability exists in PHPGurukul Student Record System 3.2's /register.php file, allowing remote attackers to manipulate da...

A critical SQL injection vulnerability exists in PHPGurukul Student Record System 3.2 through the /admin-profile.php file's aemailid parameter. This a...

This critical SQL injection vulnerability in PHPGurukul Student Record System 3.2 allows attackers to execute arbitrary SQL commands via the 'del' par...

This CVE describes a critical SQL injection vulnerability in PHPGurukul Old Age Home Management System 1.0. Attackers can remotely exploit the /admin/...

A critical SQL injection vulnerability exists in code-projects Staff Audit System 1.0 through the /search_index.php file's Search parameter. This allo...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows attackers to manipulate database queries through t...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows remote attackers to execute arbitrary SQL commands...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows remote attackers to execute arbitrary SQL commands...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows remote attackers to execute arbitrary SQL commands...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows remote attackers to execute arbitrary SQL commands...

CVE-2025-6850 is a critical SQL injection vulnerability in Simple Forum 1.0 that allows remote attackers to execute arbitrary SQL commands via the 'Fi...

A critical SQL injection vulnerability exists in Simple Forum 1.0's /forum_edit.php file, allowing remote attackers to manipulate database queries via...

This critical SQL injection vulnerability in sfturing hosp_order allows remote attackers to execute arbitrary SQL commands by manipulating the hospita...

This critical SQL injection vulnerability in sfturing hosp_order allows remote attackers to execute arbitrary SQL commands by manipulating the offices...

This critical SQL injection vulnerability in huija bicycleSharingServer 1.0 allows remote attackers to execute arbitrary SQL commands through the sele...

This critical SQL injection vulnerability in huija bicycleSharingServer allows attackers to execute arbitrary SQL commands through the Title parameter...

This is a critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0. Attackers can remotely exploit the /panel/bwdates-r...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows remote attackers to execute arbitrary SQL commands...

This critical SQL injection vulnerability in SourceCodester Best Salon Management System 1.0 allows attackers to manipulate database queries through t...

This CVE describes a critical SQL injection vulnerability in PHPGurukul Art Gallery Management System 1.1. Attackers can exploit the 'awarddetails' pa...

This critical SQL injection vulnerability in PHPGurukul Art Gallery Management System allows remote attackers to execute arbitrary SQL commands via th...

This critical SQL injection vulnerability in PHPGurukul Art Gallery Management System allows remote attackers to execute arbitrary SQL commands via th...

This critical SQL injection vulnerability in PHPGurukul Art Gallery Management System 1.1 allows remote attackers to execute arbitrary SQL commands vi...

A critical SQL injection vulnerability exists in itsourcecode Employee Record Management System 1.0 through the /editprofile.php file. Attackers can r...

This vulnerability allows remote attackers to execute SQL injection attacks against the Advance Charity Management System 1.0 by manipulating the 'm06...

This critical SQL injection vulnerability in PHPGurukul Directory Management System 2.0 allows remote attackers to execute arbitrary SQL commands via ...

This critical SQL injection vulnerability in PHPGurukul Pre-School Enrollment System 1.0 allows attackers to manipulate database queries through the c...

A critical SQL injection vulnerability exists in PHPGurukul Pre-School Enrollment System 1.0, specifically in the /admin/add-teacher.php file's tsubje...

A critical SQL injection vulnerability in PHPGurukul Emergency Ambulance Hiring Portal 1.0 allows remote attackers to execute arbitrary SQL commands v...

This CVE describes a critical SQL injection vulnerability in the Brilliance Golden Link Secondary System. Attackers can exploit the 'custTradeName' pa...

This critical SQL injection vulnerability in zhilink ADP Application Developer Platform 1.0.0 allows remote attackers to execute arbitrary SQL command...

This critical SQL injection vulnerability in Projectworlds Life Insurance Management System 1.0 allows attackers to manipulate database queries throug...

This critical SQL injection vulnerability in Projectworlds Life Insurance Management System 1.0 allows attackers to execute arbitrary SQL commands via...

This critical SQL injection vulnerability in realguoshuai open-video-cms 1.0 allows remote attackers to execute arbitrary SQL commands via the 'sort' ...

This critical SQL injection vulnerability in PHPGurukul Nipah Virus Testing Management System 1.0 allows remote attackers to execute arbitrary SQL com...

This critical SQL injection vulnerability in Patient Record Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the it...

A critical SQL injection vulnerability in PHPGurukul Employee Record Management System 1.3 allows remote attackers to execute arbitrary SQL commands v...

This critical SQL injection vulnerability in PHPGurukul Employee Record Management System 1.3 allows remote attackers to execute arbitrary SQL command...

This critical SQL injection vulnerability in Patient Record Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the it...

This critical SQL injection vulnerability in PHPGurukul Employee Record Management System 1.3 allows attackers to manipulate database queries through ...

A critical SQL injection vulnerability exists in code-projects Patient Record Management System 1.0, specifically in the view_hematology.php file's it...