diy777/cve

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-11055 ↗	Sep 27, 2025Saturday, 27 September 2025, 10:15	7.3 HIGH	7.5 HIGH
A vulnerability was detected in SourceCodester Online Hotel Reservation System 1.0. Affected is an unknown function of the file /admin/updateaddress.php. The manipulation of the argument address results in sql injection. The attack may be launched remotely. The exploit is now public and may be used.
CVE-2025-9774 ↗	Sep 1, 2025Monday, 1 September 2025, 11:15	4.3 MEDIUM	5 MEDIUM
A vulnerability has been found in RemoteClinic up to 2.0. This issue affects some unknown processing of the file /patients/edit-patient.php. The manipulation of the argument Email leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-9775 ↗	Sep 1, 2025Monday, 1 September 2025, 11:15	7.3 HIGH	7.5 HIGH
A vulnerability was found in RemoteClinic up to 2.0. Impacted is an unknown function of the file /staff/edit-my-profile.php. The manipulation of the argument image results in unrestricted upload. The attack may be launched remotely. The exploit has been made public and could be used.