Filtered by vendor Janobe
Subscriptions
Total
170 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-28423 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&action=delete. | ||||
| CVE-2022-28421 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=posts&action=display&value=1&postid=. | ||||
| CVE-2022-28420 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via BabyCare/admin.php?id=theme&setid=. | ||||
| CVE-2022-28437 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&action=type&userrole=Admin&userid=3. | ||||
| CVE-2022-28426 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php&action=edit&roleid=. | ||||
| CVE-2022-28436 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&action=display&value=Hide&userid=. | ||||
| CVE-2022-28434 | 1 Janobe | 1 Baby Care System | 2025-11-18 | 9.8 Critical |
| Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=siteoptions&social=edit&sid=2. | ||||
| CVE-2025-13237 | 2 Itsourcecode, Janobe | 2 Inventory Management System, Inventory Management System | 2025-11-18 | 7.3 High |
| A security flaw has been discovered in itsourcecode Inventory Management System 1.0. Affected is an unknown function of the file /LogSignModal.PHP. The manipulation of the argument U_USERNAME results in sql injection. The attack can be launched remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-12926 | 2 Janobe, Sourcecodester | 2 Farm Management System, Farm Management System | 2025-11-18 | 6.3 Medium |
| A weakness has been identified in SourceCodester Farm Management System 1.0. The affected element is an unknown function of the file /review.php. This manipulation of the argument pid causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. | ||||
| CVE-2025-12930 | 2 Janobe, Sourcecodester | 2 Food Ordering System, Food Ordering Management System | 2025-11-18 | 6.3 Medium |
| A vulnerability has been found in SourceCodester Food Ordering System 1.0. Affected is an unknown function of the file /view-ticket.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. | ||||
| CVE-2025-12931 | 2 Janobe, Sourcecodester | 2 Food Ordering System, Food Ordering Management System | 2025-11-18 | 6.3 Medium |
| A vulnerability was found in SourceCodester Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/edit-orders.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. | ||||
| CVE-2025-12932 | 2 Janobe, Sourcecodester | 2 Baby Care System, Baby Care System | 2025-11-17 | 4.7 Medium |
| A vulnerability was determined in SourceCodester Baby Care System 1.0. Affected by this issue is some unknown functionality of the file /admin.php?id=inbox. This manipulation of the argument msgid causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2025-12933 | 2 Janobe, Sourcecodester | 2 Baby Care System, Baby Care System | 2025-11-17 | 6.3 Medium |
| A vulnerability was identified in SourceCodester Baby Care System 1.0. This affects an unknown part of the file /updatewelcome.php?id=siteoptions&action=welcome. Such manipulation of the argument roleid leads to sql injection. The attack can be launched remotely. The exploit is publicly available and might be used. | ||||
| CVE-2025-12939 | 2 Janobe, Sourcecodester | 2 Interview Management System, Interview Management System | 2025-11-17 | 6.3 Medium |
| A security flaw has been discovered in SourceCodester Interview Management System up to 1.0. Affected by this issue is some unknown functionality of the file /addCandidate.php. The manipulation of the argument candName results in sql injection. The attack can be launched remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-12292 | 2 Janobe, Sourcecodester | 2 Point Of Sales, Point Of Sales | 2025-11-03 | 7.3 High |
| A vulnerability was determined in SourceCodester Point of Sales 1.0. This vulnerability affects unknown code of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2025-12294 | 2 Janobe, Sourcecodester | 2 Point Of Sales, Point Of Sales | 2025-11-03 | 4.7 Medium |
| A security flaw has been discovered in SourceCodester Point of Sales 1.0. Impacted is an unknown function of the file /delete_category.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be exploited. | ||||
| CVE-2025-12293 | 2 Janobe, Sourcecodester | 2 Point Of Sales, Point Of Sales | 2025-11-03 | 7.3 High |
| A vulnerability was identified in SourceCodester Point of Sales 1.0. This issue affects some unknown processing of the file /category.php. Such manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used. | ||||
| CVE-2025-11486 | 2 Janobe, Sourcecodester | 2 Farm Management System, Farm Management System | 2025-10-10 | 6.3 Medium |
| A vulnerability was identified in SourceCodester Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /buyNow.php. Such manipulation of the argument Name leads to sql injection. The attack can be launched remotely. The exploit is publicly available and might be used. | ||||
| CVE-2025-11430 | 2 Janobe, Sourcecodester | 2 Simple E-commerce Bookstore, Simple E-commerce Bookstore | 2025-10-09 | 7.3 High |
| A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used. | ||||
| CVE-2025-11476 | 2 Janobe, Sourcecodester | 2 Simple E-commerce Bookstore, Simple E-commerce Bookstore | 2025-10-09 | 7.3 High |
| A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument login_username leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used. | ||||