VYPR

Mobile Shop Management System

by Code Projects

CVEs (19)

  • CVE-2025-14646HigDec 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Student File Management System 1.0. This impacts an unknown function of the file /admin/delete_student.php. The manipulation of the argument stud_id results in sql injection. The attack may be performed from remote. The…

  • CVE-2025-14645HigDec 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown function of the file /admin/delete_user.php. The manipulation of the argument user_id leads to sql injection. The attack is possible to be carried out remotely. The…

  • CVE-2025-14640HigDec 14, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /admin/save_student.php. Executing manipulation of the argument stud_no can lead to sql injection. The attack may be launched remotely. The exploit…

  • CVE-2025-14623HigDec 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out…

  • CVE-2025-14622HigDec 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The…

  • CVE-2025-14621HigDec 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is…

  • CVE-2025-14620HigDec 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects Student File Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/login_query.php. Executing manipulation of the argument Username can lead to sql injection. The attack may be launched…

  • CVE-2025-14619HigDec 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Student File Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login_query.php. Performing manipulation of the argument stud_no results in sql injection. The attack may be initiated remotely.…

  • CVE-2025-15205MedDec 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in code-projects Student File Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download.php. The manipulation of the argument istore_id leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-15050MedDec 24, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects Student File Management System 1.0. This affects an unknown part of the file /save_file.php. Such manipulation of the argument File leads to unrestricted upload. The attack can be executed remotely. The exploit has been…

  • CVE-2025-9841MedSep 3, 2025
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in code-projects Mobile Shop Management System 1.0. This affects an unknown function of the file AddNewProduct.php. The manipulation of the argument ProductImage leads to unrestricted upload. The attack is possible to be carried out…

  • CVE-2025-15213MedDec 30, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /download.php of the component File Download Handler. The manipulation of the argument store_id leads to improper authorization. The attack…

  • CVE-2025-9845LowSep 3, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in code-projects Fruit Shop Management System 1.0. Affected by this vulnerability is an unknown functionality of the file products.php. Such manipulation of the argument product_code/gen_name/product_name/supplier leads to cross site scripting. It…

  • CVE-2025-14663LowDec 14, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was determined in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/update_student.php. Executing manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit has been…

  • CVE-2025-14662LowDec 14, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php of the component Update User Page. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The…

  • CVE-2025-69562Jan 27, 2026
    risk 0.00cvss epss 0.00

    code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /insertmessage.php via the userid parameter.

  • CVE-2025-69563Jan 27, 2026
    risk 0.00cvss epss 0.00

    code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via the Password parameter.

  • CVE-2025-69564Jan 27, 2026
    risk 0.00cvss epss 0.00

    code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php via the Name, Address, email, UserName, Password, confirm_password, Role, Branch, and Activate parameters.

  • CVE-2025-69565Jan 27, 2026
    risk 0.00cvss epss 0.00

    code-projects Mobile Shop Management System 1.0 is vulnerable to File Upload in /ExAddProduct.php.