Fabian Security Vulnerabilities (CVEs)

CVE-2025-12913 is a SQL injection vulnerability in Responsive Hotel Site 1.0 that allows remote attackers to manipulate database queries through the I...

CVE-2025-12855 is an SQL injection vulnerability in Responsive Hotel Site 1.0's newsletterdel.php admin file. Attackers can manipulate the 'eid' param...

CVE-2025-12856 is a SQL injection vulnerability in Responsive Hotel Site 1.0's reservation.php admin endpoint. Attackers can manipulate the email para...

CVE-2025-12857 is an SQL injection vulnerability in Responsive Hotel Site 1.0's roombook.php admin file that allows attackers to manipulate database q...

This SQL injection vulnerability in Simple Online Hotel Reservation System 2.0 allows attackers to manipulate database queries through the Name parame...

This vulnerability allows attackers to inject malicious scripts into the supplier_update.php page of code-projects E-Commerce Website 1.0 through the ...

This vulnerability allows attackers to inject malicious scripts into the product name, description, or cost fields in code-projects E-Commerce Website...

This vulnerability in code-projects E-Commerce Website 1.0 allows attackers to inject malicious scripts via the supplier name or address fields in the...

This CVE describes a SQL injection vulnerability in Nero Social Networking Site 1.0's deletemessage.php file. Attackers can manipulate the message_id ...

CVE-2025-12306 is a SQL injection vulnerability in Nero Social Networking Site 1.0 that allows remote attackers to execute arbitrary SQL commands via ...

This vulnerability allows remote attackers to upload arbitrary files to the Simple Food Ordering System 1.0 via the photo parameter in /editproduct.ph...

This vulnerability allows attackers to inject malicious scripts into the Simple Food Ordering System 1.0 through the cname parameter in /addcategory.p...

A cross-site scripting (XSS) vulnerability exists in code-projects Simple Food Ordering System 1.0, specifically in the /editcategory.php file's pname...

This vulnerability allows attackers to inject malicious scripts into the Simple Food Ordering System 1.0 through the /addproduct.php endpoint. When us...

CVE-2025-12283 is an authorization bypass vulnerability in code-projects Client Details System 1.0 that allows attackers to access restricted function...

A cross-site scripting (XSS) vulnerability exists in code-projects Simple E-Banking System 1.0 in the /eBank/register.php file. Attackers can inject m...

This SQL injection vulnerability in Client Details System 1.0 allows attackers to manipulate database queries via the ID parameter in welcome.php. Rem...

CVE-2025-12238 is an SQL injection vulnerability in code-projects Automated Voting System 1.0 that allows attackers to manipulate database queries via...

This SQL injection vulnerability in code-projects Automated Voting System 1.0 allows attackers to manipulate database queries through the Password par...

This SQL injection vulnerability in Automated Voting System 1.0 allows attackers to manipulate database queries through the 'firstname' parameter in t...

This SQL injection vulnerability in Simple Food Ordering System 1.0 allows attackers to execute arbitrary SQL commands via the 'cname' parameter in /a...

This SQL injection vulnerability in Simple Food Ordering System 1.0 allows attackers to manipulate database queries through the Category parameter in ...

CVE-2025-11608 is an SQL injection vulnerability in code-projects E-Banking System 1.0 that allows remote attackers to execute arbitrary SQL commands ...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows attackers to manipulate database queries through the prod_id parameter...

This vulnerability allows remote attackers to execute SQL injection attacks against code-projects E-Commerce Website 1.0 by manipulating the order_id ...

This vulnerability allows remote attackers to execute SQL injection attacks against Project Monitoring System 1.0 through the uid parameter in /usered...

This vulnerability allows attackers to execute arbitrary SQL commands through the txtspecialization parameter in the searchjob.php file of Online Job ...

CVE-2025-11582 is an SQL injection vulnerability in code-projects Online Job Search Engine 1.0 that allows remote attackers to execute arbitrary SQL c...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows remote attackers to execute arbitrary SQL commands via the Search para...

This SQL injection vulnerability in code-projects Online Complaint Site 1.0 allows attackers to manipulate database queries through the Category param...

Simple Scheduling System 1.0 contains a stored XSS vulnerability in the Subject Description field that allows attackers to inject malicious scripts. W...

CVE-2025-60302 is a stored cross-site scripting (XSS) vulnerability in code-projects Client Details System 1.0 that allows attackers to inject malicio...

CVE-2025-11530 is a SQL injection vulnerability in code-projects Online Complaint Site 1.0 that allows attackers to manipulate database queries throug...

This SQL injection vulnerability in code-projects Online Complaint Site 1.0 allows remote attackers to manipulate database queries through the cid par...

This CVE describes a SQL injection vulnerability in code-projects Online Complaint Site 1.0. Attackers can manipulate the 'cid' parameter in the /cms/...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows attackers to manipulate database queries through the supp_id parameter...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows attackers to manipulate database queries through the supp_email parame...

This vulnerability in code-projects Voting System 1.0 allows remote attackers to upload arbitrary files via the photo parameter in /admin/voters_add.p...

This SQL injection vulnerability in code-projects E-Commerce Website 1.0 allows attackers to manipulate database queries through the prod_name paramet...

CVE-2025-11434 is an SQL injection vulnerability in itsourcecode Student Transcript Processing System 1.0 that allows attackers to manipulate database...

This SQL injection vulnerability in code-projects Web-Based Inventory and POS System 1.0 allows attackers to manipulate database queries through the s...

This SQL injection vulnerability in Simple Food Ordering System 1.0 allows remote attackers to execute arbitrary SQL commands via the Category paramet...

This vulnerability allows remote attackers to upload arbitrary files to the Online Hotel Reservation System 1.0 via the /admin/addgalleryexec.php endp...

CVE-2025-11351 is an unrestricted file upload vulnerability in code-projects Online Hotel Reservation System 1.0. Attackers can upload malicious files...

CVE-2025-11342 is a SQL injection vulnerability in code-projects Online Course Registration 1.0 that allows attackers to manipulate database queries t...

This SQL injection vulnerability in code-projects Online Course Registration 1.0 allows attackers to manipulate database queries through the ID parame...

This vulnerability allows remote attackers to execute arbitrary SQL commands via the starttime/endtime parameters in the /addtime.php file of Simple S...

This vulnerability allows remote attackers to execute arbitrary SQL commands via the 'corcode' parameter in the /schedulingsystem/addcourse.php file i...

CVE-2025-11105 is an SQL injection vulnerability in code-projects Simple Scheduling System 1.0 affecting the /schedulingsystem/addsubject.php file. At...