Lucene search
K

104 matches found

RedhatCVE
RedhatCVE
added 2025/03/25 4:18 p.m.18 views

CVE-2025-2654

A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/services/manageservice.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...

9.8CVSS7.7AI score0.00527EPSS
Exploits1References1
OSV
OSV
added 2025/03/23 5:15 p.m.2 views

CVE-2025-2655

A vulnerability was detected in SourceCodester AC Repair and Services System 1.0. The affected element is the function saveusers/deleteusers of the file /classes/Users.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS5.8AI score
Exploits0References6
NVD
NVD
added 2025/03/23 5:15 p.m.10 views

CVE-2025-2655

A vulnerability was detected in SourceCodester AC Repair and Services System 1.0. The affected element is the function saveusers/deleteusers of the file /classes/Users.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS0.00547EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/03/23 4:31 p.m.7 views

CVE-2025-2655 SourceCodester AC Repair and Services System Users.php delete_users sql injection

A vulnerability was detected in SourceCodester AC Repair and Services System 1.0. The affected element is the function saveusers/deleteusers of the file /classes/Users.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The...

7.5CVSS7.3AI score0.00547EPSS
Exploits1References6
CVE
CVE
added 2025/03/23 4:31 p.m.62 views

CVE-2025-2655

SourceCodester AC Repair and Services System 1.0 is affected by CVE-2025-2655. The vulnerability resides in the save_users and delete_users functions in /classes/Users.php, where manipulation of the ID argument yields an SQL injection. The issue allows remote exploitation and, per the public disc...

9.8CVSS7.3AI score0.00547EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2025/03/23 4:0 p.m.20 views

CVE-2025-2654 SourceCodester AC Repair and Services System manage_service.php sql injection

A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/services/manageservice.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...

7.5CVSS0.00527EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/03/23 4:0 p.m.9 views

CVE-2025-2654 SourceCodester AC Repair and Services System manage_service.php sql injection

A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/services/manageservice.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...

7.5CVSS7.6AI score0.00527EPSS
Exploits1References5
CVE
CVE
added 2025/03/23 4:0 p.m.54 views

CVE-2025-2654

SourceCodester AC Repair and Services System 1.0 contains an SQL injection vulnerability in the admin/services/manage_service.php script, triggered by manipulation of the ID parameter. The issue is exploitable remotely and is considered critical based on the CVE description. The connected sources...

9.8CVSS7.5AI score0.00527EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.3 views

SourceCodester AC Repair and Services System 注入漏洞

SourceCodester AC Repair and Services System is a SourceCodester open source air conditioning repair and services system. An injection vulnerability exists in SourceCodester AC Repair and Services System version 1.0, which stems from the fact that incorrect manipulation of a parameter ID can lead...

9.8CVSS7.9AI score0.00547EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/03/23 12:0 a.m.4 views

SourceCodester AC Repair and Services System 注入漏洞

SourceCodester AC Repair and Services System is a SourceCodester open source air conditioning repair and services system. An injection vulnerability exists in SourceCodester AC Repair and Services System version 1.0, which stems from the fact that incorrect manipulation of a parameter ID can lead...

9.8CVSS8AI score0.00527EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/03/23 12:0 a.m.3 views

PT-2025-12541 · Sourcecodester · Sourcecodester Ac Repair/Services System

Name of the Vulnerable Software and Affected Versions: SourceCodester AC Repair and Services System version 1.0 Description: A critical issue has been identified, affecting the save users function in the /classes/Users.php file. The manipulation of the ID argument leads to SQL injection. This iss...

9.8CVSS7.7AI score0.00547EPSS
Exploits1References14
0day.today
0day.today
added 2024/03/04 12:0 a.m.139 views

AC Repair and Services System v1.0 - Multiple SQL Injection Vulnerability

Exploit Title: AC Repair and Services System v1.0 - Multiple SQL Injection Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: oretnom23 Vendor Homepage: https://www.sourcecodester.com/php/16513/ac-repair-and-services-system-using-php-and-mysql-source-code-free-download.html Software Link:...

7.4AI score
Exploits0
NVD
NVD
added 2023/09/17 5:15 a.m.25 views

CVE-2023-5021

A vulnerability, which was classified as problematic, was found in SourceCodester AC Repair and Services System 1.0. Affected is an unknown function of the file admin/?page=systeminfo/contactinformation. The manipulation of the argument telephone/mobile/address leads to cross site scripting. It i...

6.1CVSS4.5AI score0.00312EPSS
Exploits0References2
Prion
Prion
added 2023/09/17 5:15 a.m.23 views

Cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester AC Repair and Services System 1.0. Affected is an unknown function of the file admin/?page=systeminfo/contactinformation. The manipulation of the argument telephone/mobile/address leads to cross site scripting. It i...

4CVSS6.1AI score0.00312EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/17 5:0 a.m.32 views

CVE-2023-5021 SourceCodester AC Repair and Services System cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester AC Repair and Services System 1.0. Affected is an unknown function of the file admin/?page=systeminfo/contactinformation. The manipulation of the argument telephone/mobile/address leads to cross site scripting. It i...

4CVSS6.2AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/17 5:0 a.m.17 views

CVE-2023-5021 SourceCodester AC Repair and Services System cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester AC Repair and Services System 1.0. Affected is an unknown function of the file admin/?page=systeminfo/contactinformation. The manipulation of the argument telephone/mobile/address leads to cross site scripting. It i...

4CVSS6.3AI score0.00312EPSS
Exploits0References2
CVE
CVE
added 2023/09/17 5:0 a.m.40 views

CVE-2023-5021

CVE-2023-5021 affects SourceCodester AC Repair and Services System 1.0. The vulnerability is a cross-site scripting flaw in the admin/?page=system_info/contact_information path, caused by manipulation of the telephone/mobile/address parameters. It can be exploited remotely. The description does n...

6.1CVSS4.5AI score0.00312EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/09/17 12:0 a.m.5 views

AC Repair and Services System Cross-Site Scripting Vulnerability

AC Repair and Services System is an air conditioning repair and services system by the individual developer Carlo Montero. A cross-site scripting vulnerability exists in AC Repair and Services System version 1.0, which stems from a cross-site scripting XSS vulnerability in the parameters...

6.1CVSS5.8AI score0.00312EPSS
Exploits0References4
NVD
NVD
added 2023/07/15 8:15 a.m.37 views

CVE-2023-3678

A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=deleteinquiry of the component HTTP POST Request Handler. The manipulation of the argument ...

9.8CVSS0.00425EPSS
Exploits0References2
OSV
OSV
added 2023/07/15 8:15 a.m.4 views

CVE-2023-3678

A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=deleteinquiry of the component HTTP POST Request Handler. The manipulation of the argument ...

9.8CVSS5.9AI score0.00425EPSS
Exploits0References2
Rows per page
Query Builder