Lerouxyxchire

Client Database Management System

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-14885

Exploit
  • EPSS 0.05%
  • Veröffentlicht 18.12.2025 18:32:06
  • Zuletzt bearbeitet 24.12.2025 14:53:20

A flaw has been found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /user_leads.php of the component Leads Generation Module. Executing manipulation can lead to unrestricted upload. The attack can b...

7.1

CVE-2025-63711

Exploit
  • EPSS 0.1%
  • Veröffentlicht 10.11.2025 00:00:00
  • Zuletzt bearbeitet 17.11.2025 18:16:51

A Cross-Site Request Forgery (CSRF) vulnerability in the SourceCodester Client Database Management System 1.0 allows an attacker to cause an authenticated administrative user to perform user deletion actions without their consent. The application's u...

7.3

CVE-2025-5840

Exploit
  • EPSS 0.1%
  • Veröffentlicht 07.06.2025 18:15:25
  • Zuletzt bearbeitet 10.06.2025 15:45:31

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /user_update_customer_order.php. The manipulation of the argument uploaded_file leads to un...

7.3

CVE-2025-5299

Exploit
  • EPSS 0.09%
  • Veröffentlicht 28.05.2025 12:15:21
  • Zuletzt bearbeitet 10.06.2025 15:46:55

A vulnerability was found in SourceCodester Client Database Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /user_order_customer_update.php. The manipulation of the argument uploaded_file_c...

9.8

CVE-2025-5207

Exploit
  • EPSS 0.06%
  • Veröffentlicht 26.05.2025 22:00:10
  • Zuletzt bearbeitet 05.06.2025 14:14:30

A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. Affected by this issue is some unknown functionality of the file /superadmin_update_profile.php. The manipulation of the argume...

9.8

CVE-2025-5002

Exploit
  • EPSS 0.07%
  • Veröffentlicht 20.05.2025 22:00:11
  • Zuletzt bearbeitet 28.05.2025 01:25:25

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /user_proposal_update_order.php. The manipulation of the argument order_id leads to sql inj...

9.8

CVE-2025-4924

  • EPSS 0.06%
  • Veröffentlicht 19.05.2025 08:31:05
  • Zuletzt bearbeitet 21.05.2025 17:41:56

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. Affected is an unknown function of the file /user_void_transaction.php. The manipulation of the argument order_id leads to sql injec...

7.3

CVE-2025-4923

Exploit
  • EPSS 0.1%
  • Veröffentlicht 19.05.2025 08:15:23
  • Zuletzt bearbeitet 28.05.2025 12:50:28

A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /user_delivery_update.php. The manipulation of the argument uploaded_fil...

7.5

CVE-2025-4909

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.05.2025 03:31:04
  • Zuletzt bearbeitet 28.05.2025 13:08:14

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiate...

9.8

CVE-2025-46193

  • EPSS 3.65%
  • Veröffentlicht 09.05.2025 00:00:00
  • Zuletzt bearbeitet 22.05.2025 18:49:22

SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in user_proposal_update_order.php.