📦 Online Bidding System
by Fabian
🔍 What is Online Bidding System?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This SQL injection vulnerability in code-projects Online Bidding System 1.0 allows attackers to manipulate database queries through the ID parameter in /administrator/weweee.php. Remote attackers can ...
CVE-2025-10802 is an SQL injection vulnerability in code-projects Online Bidding System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /administrator/remove...
CVE-2025-10795 is an SQL injection vulnerability in code-projects Online Bidding System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /administrator/bidupd...
CVE-2025-10791 is a SQL injection vulnerability in code-projects Online Bidding System 1.0 that allows remote attackers to execute arbitrary SQL commands via the 'aduser' parameter in /administrator/i...
A critical SQL injection vulnerability exists in code-projects Online Bidding System 1.0's administrator interface. Attackers can remotely exploit the 'aduser' parameter to execute arbitrary SQL comma...
CVE-2025-6469 is a critical SQL injection vulnerability in code-projects Online Bidding System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /details.php. ...
CVE-2025-6467 is a critical SQL injection vulnerability in code-projects Online Bidding System 1.0 that allows remote attackers to execute arbitrary SQL commands via the User parameter in /login.php. ...
This vulnerability allows remote attackers to upload arbitrary files to the Online Bidding System 1.0 administrator interface via the catimage parameter in the categoryadd function. Attackers can pote...