password_management_application

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2019-25347

Assigner-VulnCheck

View Details

Assigner-VulnCheck

CVSS Score-7.1||HIGH

EPSS-0.12% / 30.78%

7 Day CHG+0.04%

Published-12 Feb, 2026 | 19:02

Updated-27 Feb, 2026 | 15:53

thesystem App 1.0 - 'username' SQL Injection

thesystem App 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentication by manipulating the username parameter. Attackers can inject malicious SQL code like ' or '1=1 to the username field to gain unauthorized access to user accounts.

Vendor-kostasmitroglou kostasmitroglou

Product-password_management_application thesystem

CWE ID-CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CVE-2019-25346

Assigner-VulnCheck

View Details

Assigner-VulnCheck

CVSS Score-7.1||HIGH

EPSS-0.12% / 30.78%

7 Day CHG+0.04%

Published-12 Feb, 2026 | 19:02

Updated-27 Feb, 2026 | 16:08

thesystem 1.0 - 'server_name' SQL Injection

TheSystem 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentication by manipulating the 'server_name' parameter. Attackers can inject malicious SQL code like ' or '1=1 to retrieve unauthorized database records and potentially access sensitive system information.

Vendor-kostasmitroglou kostasmitroglou

Product-password_management_application thesystem

CWE ID-CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')