Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-13290
A vulnerability has been found in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file /saveorder.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.0
Published
2025-11-17
CVE-2025-13291
A vulnerability was found in Campcodes Supplier Management System 1.0. This affects an unknown part of the file /manufacturer/confirm_order.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used.
CVSS Score
7.3
EPSS Score
0.0
Published
2025-11-17
CVE-2025-58410
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permissions to memory buffers exported as read-only. This is caused by improper handling of the memory protections for the buffer resource.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-11-17
CVE-2024-44647
PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting (XSS) via the aremark parameter in manage-tickets.php.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-11-17
CVE-2024-44648
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via id and adminremark parameters in quote-details.php.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-11-17
CVE-2024-44652
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the user_email, username, user_firstname, user_lastname, and user_address parameters in user_register.php.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-11-17
CVE-2024-46334
kashipara School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the formuser and formpassword parameters in /adminLogin.php.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-11-17
CVE-2024-46336
kashipara School Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via /client_user/feedback.php.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-11-17
CVE-2024-44641
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-11-17
CVE-2024-44644
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the frm_id and aremark parameters in manage-tickets.php.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-11-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved