Darkseid

darkseid

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

Beauty Parlour Management System

beauty_parlour_management_system

1 CVE

Sports Club Management System

sports_club_management_system

1 CVE

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-13422 1Darkseid 1Sports Club Management System Apr 29, 2026 Nov 20, 2025 5.5 MEDIUM· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/change_s_pwd.php. Performing manipulation of the argument logi...Show more A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/change_s_pwd.php. Performing manipulation of the argument login_id results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.Show less
CVE-2025-26157 1Darkseid 1Beauty Parlour Management System Jun 6, 2025 Feb 14, 2025 N/A· v4 5.9 MEDIUM· v3 N/A· v2 A SQL Injection vulnerability was found in /bpms/index.php in Source Code and Project Beauty Parlour Management System V1.1, which allows remote attackers to execute arbitrary code via the name POST request parameter.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-13422

1Darkseid

1Sports Club Management System

Apr 29, 2026

Nov 20, 2025

5.5 MEDIUM· v4

9.8 CRITICAL· v3

7.5 HIGH· v2

A vulnerability was detected in freeprojectscodes Sports Club Management System 1.0. The affected element is an unknown function of the file /dashboard/admin/change_s_pwd.php. Performing manipulation of the argument login_id results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.Show less

CVE-2025-26157

1Darkseid

1Beauty Parlour Management System

Jun 6, 2025

Feb 14, 2025

N/A· v4

5.9 MEDIUM· v3

N/A· v2

A SQL Injection vulnerability was found in /bpms/index.php in Source Code and Project Beauty Parlour Management System V1.1, which allows remote attackers to execute arbitrary code via the name POST request parameter.