CWE-74: Injection

CVE-2025-15243 is an SQL injection vulnerability in Simple Stock System 1.0's login.php file that allows remote attackers to execute arbitrary SQL com...

CVE-2025-15208 is a SQL injection vulnerability in the Refugee Food Management System 1.0 that allows attackers to manipulate database queries through...

Campcodes Supplier Management System 1.0 contains a SQL injection vulnerability in the /admin/add_area.php file via the txtAreaCode parameter. This al...

Campcodes Supplier Management System 1.0 contains a SQL injection vulnerability in the /admin/view_products.php file through manipulation of the chkId...

CVE-2025-15198 is a SQL injection vulnerability in the College Notes Uploading System 1.0 that allows attackers to manipulate database queries through...

CVE-2025-15196 is an SQL injection vulnerability in code-projects Assessment Management 1.0 that allows attackers to execute arbitrary SQL commands vi...

CVE-2025-15195 is a SQL injection vulnerability in code-projects Assessment Management 1.0 that allows remote attackers to execute arbitrary SQL comma...

This SQL injection vulnerability in Refugee Food Management System 1.0 allows attackers to manipulate database queries through the 'a' parameter in /h...

CVE-2025-15185 is a SQL injection vulnerability in the Refugee Food Management System 1.0 that allows remote attackers to execute arbitrary SQL comman...

This SQL injection vulnerability in Refugee Food Management System 1.0 allows attackers to execute arbitrary SQL commands via the 'a' parameter in /ho...

This SQL injection vulnerability in Refugee Food Management System 1.0 allows attackers to manipulate database queries through the tfid parameter in /...

CVE-2025-15182 is a SQL injection vulnerability in code-projects Refugee Food Management System 1.0 that allows remote attackers to execute arbitrary ...

CVE-2025-15181 is an SQL injection vulnerability in the Refugee Food Management System 1.0 that allows attackers to manipulate database queries throug...

CVE-2025-15168 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL c...

CVE-2025-15167 is a SQL injection vulnerability in itsourcecode Online Cake Ordering System 1.0 that allows attackers to execute arbitrary SQL command...

This vulnerability allows remote attackers to execute arbitrary SQL commands via the ID parameter in the /updatesupplier.php?action=edit endpoint of i...

CVE-2025-15165 is an SQL injection vulnerability in itsourcecode Online Cake Ordering System 1.0 that allows remote attackers to execute arbitrary SQL...

This CVE describes a SQL injection vulnerability in phpok3w's show.php file through manipulation of the ID parameter. Attackers can remotely exploit t...

This SQL injection vulnerability in the saiftheboss7 onlinemcqexam software allows attackers to manipulate database queries through the ans1/ans2 para...

This CVE describes an SQL injection vulnerability in FantasticLBP Hotels_Server's Room.php API endpoint. Attackers can exploit the hotelId parameter t...

This vulnerability allows remote attackers to execute SQL injection attacks against itsourcecode Student Management System 1.0 through the /list_repor...

This vulnerability allows remote attackers to execute SQL injection attacks against itsourcecode Student Management System 1.0 via the ID parameter in...

CVE-2025-15075 is a SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL co...

CVE-2025-15074 is a SQL injection vulnerability in itsourcecode Online Frozen Foods Ordering System 1.0 that allows remote attackers to execute arbitr...

CVE-2025-15073 is an SQL injection vulnerability in itsourcecode Online Frozen Foods Ordering System 1.0 that allows remote attackers to execute arbit...

This SQL injection vulnerability in code-projects Student Information System 1.0 allows attackers to manipulate database queries through the searchbox...

This vulnerability allows remote attackers to execute arbitrary commands on Tenda WH450 routers by injecting malicious input into the 'ipaddress' para...

CVE-2025-15049 is a SQL injection vulnerability in code-projects Online Farm System 1.0 that allows attackers to execute arbitrary SQL commands via th...

CVE-2025-15034 is an SQL injection vulnerability in itsourcecode Student Management System 1.0 that allows remote attackers to execute arbitrary SQL c...

This vulnerability allows remote attackers to execute arbitrary SQL commands via the 'a' parameter in /home/home.php in code-projects Refugee Food Man...

This SQL injection vulnerability in Simple Stock System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'uname' parameter in /lo...

This SQL injection vulnerability in SeaCMS allows remote attackers to execute arbitrary SQL commands through manipulated page/limit parameters in the ...

This CVE describes a SQL injection vulnerability in Campcodes Complete Online Beauty Parlor Management System 1.0. Attackers can remotely exploit the ...

This SQL injection vulnerability in Campcodes Complete Online Beauty Parlor Management System 1.0 allows attackers to execute arbitrary SQL commands t...

CVE-2025-14968 is an SQL injection vulnerability in Simple Stock System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ema...

CVE-2025-14959 is an SQL injection vulnerability in Simple Stock System 1.0 that allows remote attackers to execute arbitrary SQL commands through the...

This vulnerability allows remote attackers to execute SQL injection attacks against the Scholars Tracking System 1.0 by manipulating the post_content ...

Campcodes Supplier Management System 1.0 contains a SQL injection vulnerability in the /admin/add_category.php file via the txtCategoryName parameter....

CVE-2025-14950 is an SQL injection vulnerability in code-projects Scholars Tracking System 1.0 that allows attackers to execute arbitrary SQL commands...

This SQL injection vulnerability in Scholars Tracking System 1.0 allows attackers to execute arbitrary SQL commands via the ID parameter in /admin/del...

This SQL injection vulnerability in Campcodes Supplier Management System 1.0 allows attackers to execute arbitrary SQL commands through the cmbAreaCod...

This CVE describes a SQL injection vulnerability in code-projects Online Appointment Booking System 1.0. Attackers can remotely exploit the /admin/del...

CVE-2025-14832 is an SQL injection vulnerability in itsourcecode Online Cake Ordering System 1.0 that allows remote attackers to execute arbitrary SQL...

This SQL injection vulnerability in FantasticLBP Hotels Server allows attackers to execute arbitrary SQL commands by manipulating the 'telephone' para...

This SQL injection vulnerability in FantasticLBP Hotels Server allows remote attackers to execute arbitrary SQL commands via the pickedHotelName/type ...

This SQL injection vulnerability in campcodes Advanced Online Examination System 1.0 allows attackers to manipulate database queries through the Usern...

CVE-2025-14666 is an SQL injection vulnerability in itsourcecode COVID Tracking System 1.0 that allows remote attackers to execute arbitrary SQL comma...

CVE-2025-14667 is a SQL injection vulnerability in itsourcecode COVID Tracking System 1.0 that allows remote attackers to execute arbitrary SQL comman...

Campcodes Supplier Management System 1.0 contains a SQL injection vulnerability in the /admin/view_unit.php file through manipulation of the chkId[] p...

This SQL injection vulnerability in itsourcecode Student Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'sy' ...