Code-Projects Simple Stock System vulnerabilities

CVE-2025-15243 [MEDIUM] CWE-74 CVE-2025-15243: A flaw has been found in code-projects Simple Stock System 1.0. This affects an unknown function of A flaw has been found in code-projects Simple Stock System 1.0. This affects an unknown function of the file /market/login.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used.

CVE-2025-15011 [MEDIUM] CWE-74 CVE-2025-15011: A vulnerability was found in code-projects Simple Stock System 1.0. Impacted is an unknown function A vulnerability was found in code-projects Simple Stock System 1.0. Impacted is an unknown function of the file /logout.php. The manipulation of the argument uname results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used.

CVE-2025-14962 [MEDIUM] CWE-79 CVE-2025-14962: A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown f A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown function of the file /market/chatuser.php. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used.

CVE-2025-14968 [MEDIUM] CWE-74 CVE-2025-14968: A security flaw has been discovered in code-projects Simple Stock System 1.0. Affected by this issue A security flaw has been discovered in code-projects Simple Stock System 1.0. Affected by this issue is some unknown functionality of the file /market/update.php. The manipulation of the argument email results in sql injection. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.

CVE-2025-14959 [MEDIUM] CWE-74 CVE-2025-14959: A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unk A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVE-2025-14834 [MEDIUM] CWE-74 CVE-2025-14834: A weakness has been identified in code-projects Simple Stock System 1.0. This affects an unknown fun A weakness has been identified in code-projects Simple Stock System 1.0. This affects an unknown function of the file /checkuser.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVE-2024-24095 [CRITICAL] CWE-89 CVE-2024-24095: Code-projects Simple Stock System 1.0 is vulnerable to SQL Injection. Code-projects Simple Stock System 1.0 is vulnerable to SQL Injection.