185 matches found
CVE-2024-48570
Client Management System 1.0 was discovered to contain a SQL injection vulnerability via the Between Dates Reports parameter at /admin/bwdates-reports-ds.php...
CVE-2024-48570
Client Management System 1.0 was discovered to contain a SQL injection vulnerability via the Between Dates Reports parameter at /admin/bwdates-reports-ds.php...
CVE-2024-48570
Client Management System 1.0 was discovered to contain a SQL injection vulnerability via the Between Dates Reports parameter at /admin/bwdates-reports-ds.php...
CVE-2024-48570
CVE-2024-48570 affects Client Management System 1.0. A SQL injection vulnerability exists in the Between Dates Reports parameter of the /admin/bwdates-reports-ds.php endpoint. The CVSS 3.1 base score is 7.5 (High) with Confidentiality impact High; no integrity/availability impact described. Conne...
PT-2024-33150 · Unknown · Client Management System
Name of the Vulnerable Software and Affected Versions: Client Management System version 1.0 Description: A SQL injection issue was discovered in the Client Management System via the Between Dates Reports parameter at the "/admin/bwdates-reports-ds.php" API endpoint. Recommendations: For Client...
Client Management System SQL注入漏洞
Client Management System is a system for managing customer relationships by an individual Indian developer Haneen Gufran. A security vulnerability exists in Client Management System version 1.0 that originates from SQL injection in the Between Dates Reports parameter of the...
CVE-2024-48570
Client Management System 1.0 was discovered to contain a SQL injection vulnerability via the Between Dates Reports parameter at /admin/bwdates-reports-ds.php...
Client Management System 1.0 SQL Injection
============================================================================================================================================= | Title : Client ms Project 1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 129.0.1 64...
CVE-2024-30990
SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "searchdata" parameter...
CVE-2024-30986
Cross Site Scripting vulnerability in /edit-services-details.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and via "price" and "sname" parameter...
CVE-2024-30985
SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "todate" and "fromdate" parameters...
PT-2024-23706 · Unknown · Phpgurukul Complaint Management System
Name of the Vulnerable Software and Affected Versions: phpgurukul Client Management System version 1.1 Description: The issue allows an attacker to execute arbitrary SQL commands via the todate and fromdate parameters in the "B/W Dates Reports" page. This is a SQL Injection vulnerability, which c...
PT-2024-23709 · Unknown · Phpgurukul Complaint Management System
Name of the Vulnerable Software and Affected Versions: phpgurukul Client Management System version 1.1 Description: The issue allows attackers to execute arbitrary code and obtain sensitive information via the "Search bar" in the /search-invoices.php endpoint. This is a Cross Site Scripting...
CVE-2024-30986
Cross Site Scripting vulnerability in /edit-services-details.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and via "price" and "sname" parameter...
CVE-2024-30985
SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "todate" and "fromdate" parameters...
Client Management System 跨站脚本漏洞
PHPGurukul Client Management System is a client management system from the US-based PHPGurukul, Inc. Phpgurukul Client Management System suffers from a cross-site scripting vulnerability that originates from cross-site scripting contained in search-invoices.php, which allows an attacker to execut...
PHPGurukul Client Management System 安全漏洞
PHPGurukul Client Management System is a client management system from the U.S.-based PHPGurukul, Inc. A security vulnerability exists in PHPGurukul Client Management System version 1.1, which originates from the presence of cross-site scripting that allows an attacker to execute arbitrary code a...
CVE-2024-30990
SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "searchdata" parameter...
CVE-2024-30986
Cross Site Scripting vulnerability in /edit-services-details.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and via "price" and "sname" parameter...
CVE-2024-30988
Cross Site Scripting vulnerability in /search-invoices.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and obtain sensitive information via the Search bar...