CVE-2024-13033 code-projects Chat System chatroom.php cross site scripting

A vulnerability, which was classified as problematic, has been found in code-projects Chat System 1.0. Affected by this issue is some unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. The...

PT-2024-17891 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A problematic vulnerability was found in the code-projects Chat System, affecting an unknown part of the file /admin/update user.php. The manipulation of the name argument leads to cross-site...

PT-2024-17890 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A problematic issue has been found in the code-projects Chat System, affecting some unknown functionality of the file /admin/chatroom.php. The manipulation of the id argument leads to cross...

CVE-2024-13020

A vulnerability classified as critical was found in code-projects Chat System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2024-13020 code-projects Chat System chatroom.php sql injection

A vulnerability classified as critical was found in code-projects Chat System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2024-13020 code-projects Chat System chatroom.php sql injection

A vulnerability classified as critical was found in code-projects Chat System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2024-13019

CVE-2024-13019 affects code-projects Chat System 1.0. The vulnerability arises in the /admin/update_room.php component, where the input parameter named name is not properly validated/escaped, enabling cross-site scripting. Exploitation is described as remote. Several sources corroborate the issue...

CVE-2024-13019 code-projects Chat System Chat Room Page update_room.php cross site scripting

A vulnerability classified as problematic has been found in code-projects Chat System 1.0. Affected is an unknown function of the file /admin/updateroom.php of the component Chat Room Page. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack...

CVE-2024-13008 code-projects Responsive Hotel Site newsletter.php sql injection

A vulnerability has been found in code-projects Responsive Hotel Site 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/newsletter.php. The manipulation of the argument eid leads to sql injection. The attack can be launched remotely. The...

Code-Projects Hostel Management System 代码注入漏洞

Code-Projects Hostel Management System is an open source hostel management system from Code-Projects. A code injection vulnerability exists in Code-Projects Hostel Management System version 1.0, which originates from a cross-site scripting vulnerability in the fname/mname/lname parameter of the...

PT-2024-17879 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue has been found in the code-projects Chat System, affecting an unknown functionality of the file /admin/chatroom.php. The manipulation of the id argument leads to SQL injectio...

PT-2024-17868 · Unknown · Code-Projects Responsive Hotel Site

Name of the Vulnerable Software and Affected Versions: code-projects Responsive Hotel Site version 1.0 Description: A critical issue has been found in the code-projects Responsive Hotel Site, affecting an unknown functionality of the file /admin/newsletter.php. The manipulation of the eid argumen...

CVE-2024-12979 code-projects Job Recruitment _all_edits.php cn_update cross site scripting

A vulnerability was found in code-projects Job Recruitment 1.0 and classified as problematic. This issue affects the function cnupdate of the file /parse/alledits.php. The manipulation of the argument cname leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

CVE-2024-12978

Code-Projects Job Recruitment 1.0 contains a SQL injection in the add_req function of /_parse/_all_edits.php caused by unsafely handling the jid/limit parameter. The vulnerability is exploitable remotely and has been publicly disclosed. Connected sources also suggest immediate mitigations: tempor...

PT-2024-17843 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A problem has been found in the function fln update of the file / parse/ all edits.php. The manipulation of the arguments fname and lname leads to cross site scripting attacks. It is...

PT-2024-17841 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A problem was found in the function cn update of the file / parse/ all edits.php. The manipulation of the argument cname leads to cross site scripting. The attack may be initiated remotel...

PT-2024-17840 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue has been found in the function add req of the file / parse/ all edits.php. The manipulation of the argument jid/limit leads to SQL injection. The attack can be initiated...

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is an open source job portal from Code-Projects. Code-Projects Job Recruitment version 1.0 has an injection vulnerability that originates from the jid/limit parameter of the /parse/alledits.php file containing a SQL injection vulnerability...

CVE-2024-12968

A vulnerability classified as critical was found in code-projects Job Recruitment 1.0. Affected by this vulnerability is the function editjobpost of the file /parse/alledits.php. The manipulation of the argument jobtype leads to sql injection. The attack can be launched remotely. The exploit has...

CVE-2024-12967

A vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. Affected is the function flnupdate of the file /parse/alledits.php. The manipulation of the argument fname/lname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...