Total
19307 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-25351 | 1 Phpgurukul | 1 Zoo Management System | 2026-06-17 | N/A | 3.8 LOW |
| SQL Injection vulnerability in /zms/admin/changeimage.php in PHPGurukul Zoo Management System 1.0 allows attackers to run arbitrary SQL commands via the editid parameter. | |||||
| CVE-2024-25325 | 1 Walterjnr1 | 1 Employee Management System | 2026-06-17 | N/A | 7.1 HIGH |
| SQL injection vulnerability in Employee Management System v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to the txtemail parameter in the login.php. | |||||
| CVE-2024-25320 | 1 Tongda2000 | 1 Office Anywhere | 2026-06-17 | N/A | 9.8 CRITICAL |
| Tongda OA v2017 and up to v11.9 was discovered to contain a SQL injection vulnerability via the $AFF_ID parameter at /affair/delete.php. | |||||
| CVE-2024-25318 | 1 Hotel Management System Project | 1 Hotel Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2. | |||||
| CVE-2024-25316 | 1 Hotel Management System Project | 1 Hotel Management System | 2026-06-17 | N/A | 9.8 CRITICAL |
| Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'eid' parameter in Hotel/admin/usersettingdel.php?eid=2. | |||||
| CVE-2024-25315 | 1 Hotel Management System Project | 1 Hotel Management System | 2026-06-17 | N/A | 9.8 CRITICAL |
| Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'rid' parameter in Hotel/admin/roombook.php?rid=2. | |||||
| CVE-2024-25314 | 1 Hotel Management System Project | 1 Hotel Management System | 2026-06-17 | N/A | 9.8 CRITICAL |
| Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'sid' parameter in Hotel/admin/show.php?sid=2. | |||||
| CVE-2024-25312 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/sub_delete.php?id=5." | |||||
| CVE-2024-25310 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/delete.php?id=5." | |||||
| CVE-2024-25309 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'pass' parameter at School/teacher_login.php. | |||||
| CVE-2024-25308 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'name' parameter at School/teacher_login.php. | |||||
| CVE-2024-25307 | 1 Code-projects | 1 Cinema Seat Reservation System | 2026-06-17 | N/A | 9.8 CRITICAL |
| Code-projects Cinema Seat Reservation System 1.0 allows SQL Injection via the 'id' parameter at "/Cinema-Reservation/booking.php?id=1." | |||||
| CVE-2024-25306 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'aname' parameter at "School/index.php". | |||||
| CVE-2024-25305 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows Authentication Bypass via the username and password parameters at School/index.php. | |||||
| CVE-2024-25304 | 1 Code-projects | 1 Simple School Management System | 2026-06-17 | N/A | 8.8 HIGH |
| Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'apass' parameter at "School/index.php." | |||||
| CVE-2024-25302 | 1 Remyandrade | 1 Event Student Attendance System | 2026-06-17 | N/A | 9.8 CRITICAL |
| Sourcecodester Event Student Attendance System 1.0, allows SQL Injection via the 'student' parameter. | |||||
| CVE-2024-25288 | 1 Slims | 1 Senayan Library Management System | 2026-06-17 | N/A | 4.9 MEDIUM |
| SLIMS (Senayan Library Management Systems) 9 Bulian v9.6.1 is vulnerable to SQL Injection via pop-scope-vocabolary.php. | |||||
| CVE-2024-25250 | 1 Carmelo | 1 Agro-school Management System | 2026-06-17 | N/A | 9.8 CRITICAL |
| SQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows attackers to run arbitrary code via the Login page. | |||||
| CVE-2024-25248 | 1 Niushop | 1 B2b2c Multi-business | 2026-06-17 | N/A | 9.8 CRITICAL |
| SQL Injection vulnerability in the orderGoodsDelivery() function in Niushop B2B2C V5 allows attackers to run arbitrary SQL commands via the order_id parameter. | |||||
| CVE-2024-25247 | 1 Niushop | 1 B2b2c Multi-business | 2026-06-17 | N/A | 9.8 CRITICAL |
| SQL Injection vulnerability in /app/api/controller/Store.php in Niushop B2B2C V5 allows attackers to run arbitrary SQL commands via latitude and longitude parameters. | |||||