6.9
CVE-2025-11118 - CodeAstro Student Grading System adminLogin.php sql injection
A vulnerability was identified in CodeAstro Student Grading System 1.0. This issue affects some unknown processing of the file /adminLogin.php. Such manipulation of the argument staffId leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be uβ¦
8.7
CVE-2025-11117 - Tenda CH22 GstDhcpSetSer formWrlExtraGet buffer overflow
A vulnerability was determined in Tenda CH22 1.0.0.1. This vulnerability affects the function formWrlExtraGet of the file /goform/GstDhcpSetSer. This manipulation of the argument dips causes buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed β¦
6.9
CVE-2025-11116 - code-projects Simple Scheduling System add.home.php sql injection
A vulnerability was found in code-projects Simple Scheduling System 1.0. This affects an unknown part of the file /add.home.php. The manipulation of the argument faculty results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used. Other parameteβ¦
6.9
CVE-2025-11115 - code-projects Simple Scheduling System addtime.php sql injection
A vulnerability has been found in code-projects Simple Scheduling System 1.0. Affected by this issue is some unknown functionality of the file /addtime.php. The manipulation of the argument starttime/endtime leads to sql injection. Remote exploitation of the attack is possible. The exploit has beenβ¦
5.3
CVE-2025-11114 - CodeAstro Online Leave Application leaveAplicationForm.php sql injection
A flaw has been found in CodeAstro Online Leave Application 1.0. Affected by this vulnerability is an unknown functionality of the file /leaveAplicationForm.php. Executing manipulation of the argument absence[] can lead to sql injection. The attack may be launched remotely. The exploit has been pubβ¦
5.3
CVE-2025-11113 - CodeAstro Online Leave Application signup.php sql injection
A vulnerability was detected in CodeAstro Online Leave Application 1.0. Affected is an unknown function of the file /signup.php. Performing manipulation of the argument city results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. Other parameters mβ¦
5.3
CVE-2025-11112 - PHPGurukul Employee Record Management System myprofile.php cross site scripting
A security vulnerability has been detected in PHPGurukul Employee Record Management System 1.3. This impacts an unknown function of the file /myprofile.php. Such manipulation of the argument First name leads to cross site scripting. The attack can be launched remotely. The exploit has been discloseβ¦
6.9
CVE-2025-11111 - Campcodes Advanced Online Voting Management System candidates_edit.php sql injection
A weakness has been identified in Campcodes Advanced Online Voting Management System 1.0. This affects an unknown function of the file /admin/candidates_edit.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been made available to β¦
6.9
CVE-2025-11110 - Campcodes Online Learning Management System school_year.php sql injection
A security flaw has been discovered in Campcodes Online Learning Management System 1.0. The impacted element is an unknown function of the file /admin/school_year.php. The manipulation of the argument school_year results in sql injection. It is possible to launch the attack remotely. The exploit haβ¦
6.9
CVE-2025-11109 - Campcodes Computer Sales and Inventory System us_edit.php sql injection
A vulnerability was identified in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/us_edit.php?action=edit. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit is pubβ¦