Carmelo Garcia Courier Management System 1.0

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:carmelogarcia:courier_management_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

VendorCarmelogarcia (118c7068-be68-5ba4-8be6-1f0dcb965d74)
ProductCourier Management System (03217a89-cf76-50e8-bf89-91e4ffa171df)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-13396 vulnerable 2026-06-08 07:04:32.129860 code-projects Courier Management System add-office.php sql injection
MEDIUM (6.3)
A weakness has been identified in code-projects Courier Management System 1.0. This affects an unknown function of the file /add-office.php. This manipulation of the argument OfficeName causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.
Published: 2025-11-19T15:32:05.710Z
Updated: 2025-11-19T16:46:18.939Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-13303 vulnerable 2026-06-08 07:04:31.936974 code-projects Courier Management System search-edit.php sql injection
MEDIUM (6.3)
A vulnerability was determined in code-projects Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /search-edit.php. This manipulation of the argument Consignment causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.
Published: 2025-11-17T22:02:08.138Z
Updated: 2025-11-18T16:36:53.948Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-13302 vulnerable 2026-06-08 07:04:31.936523 code-projects Courier Management System add-new-officer.php sql injection
MEDIUM (4.7)
A vulnerability was identified in code-projects Courier Management System 1.0. This affects an unknown part of the file /add-new-officer.php. Such manipulation of the argument ManagerName leads to sql injection. The attack can be launched remotely. The exploit is publicly available and might be used.
Published: 2025-11-17T21:32:05.929Z
Updated: 2025-11-17T21:49:59.914Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-12316 vulnerable 2026-06-08 07:04:30.030662 code-projects Courier Management System edit-courier.php sql injection
HIGH (7.3)
A vulnerability was identified in code-projects Courier Management System 1.0. This impacts an unknown function of the file /courier/edit-courier.php. The manipulation of the argument OfficeName leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.
Published: 2025-10-27T20:32:05.320Z
Updated: 2025-10-28T14:50:43.387Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-11553 vulnerable 2026-06-08 07:04:28.486569 code-projects Courier Management System add-courier.php sql injection
MEDIUM (6.3)
A weakness has been identified in code-projects Courier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-courier.php. Executing manipulation of the argument Shippername can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public and could be exploited.
Published: 2025-10-09T19:32:06.159Z
Updated: 2025-10-10T14:25:48.290Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10608 vulnerable 2026-06-08 06:23:47.073094 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-10607 vulnerable 2026-06-08 06:23:47.072230 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.