CVE-2024-12486 code-projects Online Class and Exam Scheduling System rank_update.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Online Class and Exam Scheduling System 1.0. Affected is an unknown function of the file /pages/rankupdate.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...

CVE-2024-12359 code-projects Admin Dashboard vendor_management.php cross site scripting

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

CVE-2024-12359 code-projects Admin Dashboard vendor_management.php cross site scripting

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

Code-Projects Online Class and Exam Scheduling System 安全漏洞

Code-Projects Online Class and Exam Scheduling System is an online class and exam scheduling system from Code-Projects, Inc. A security vulnerability exists in Code-Projects Online Class and Exam Scheduling System version 1.0, which stems from an SQL injection vulnerability contained in the id...

Code-Projects Admin Dashboard 安全漏洞

Code-Projects Admin Dashboard is an administration dashboard for Code-Projects open source. A security vulnerability exists in Code-Projects Admin Dashboard version 1.0, which stems from a cross-site scripting vulnerability contained in the username parameter of the /vendormanagement.php page...

CVE-2024-12233

CVE-2024-12233 affects code-projects Online Notice Board up to version 1.0, targeting the Profile Picture Handler. The flaw arises from processing the img argument in /registration.php, allowing unrestricted file uploads and enabling remote exploitation. Multiple connected sources corroborate a c...

CVE-2024-12232

A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...

CVE-2024-12232 code-projects Simple CRUD Functionality index.php cross site scripting

A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...

Code-Projects Online Notice Board System 代码问题漏洞

Code-Projects Online Notice Board System is a Code-Projects open source online bulletin board system. A code issue vulnerability exists in Code-Projects Online Notice Board System prior to version 1.0, which stems from an unrestricted upload of the parameter img...

code-projects Hotel Management System 安全漏洞

Code-Projects Hotel Management System is an open source hotel management system from Code-Projects. A security vulnerability exists in code-projects Hotel Management System version 1.0 due to a buffer overflow in parameter Str2...

CVE-2024-12186

CVE-2024-12186 affects Code-projects Hotel Management System 1.0, specifically the file hotelnew.c in the Available Room Handler. The issue is a stack-based overflow caused by manipulation of the argument admin_entry, with local access required to exploit. Multiple connected sources confirm the v...

CVE-2024-12007

A vulnerability, which was classified as critical, was found in code-projects Farmacia 1.0. This affects an unknown part of the file /visualizar-produto.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2024-12007 code-projects Farmacia visualizar-produto.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Farmacia 1.0. This affects an unknown part of the file /visualizar-produto.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2024-12007

CVE-2024-12007 affects code-projects Farmacia 1.0. The vulnerability resides in /visualizar-produto.php where manipulating the id parameter leads to SQL injection. Impact is remote exploitation with public disclosure of the exploit. Remediation guidance from PT-2024-17399 suggests input validatio...

PT-2024-17399 · Unknown · Code-Projects Farmacia

Name of the Vulnerable Software and Affected Versions: code-projects Farmacia version 1.0 Description: A critical issue was found in the /visualizar-produto.php file, affecting an unknown part of it. The manipulation of the id argument leads to SQL injection. It is possible to initiate the attack...

CVE-2024-12001 code-projects Wazifa System Setting updatesettings.php cross site scripting

A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. Affected is an unknown function of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting. It is possible to...

CVE-2024-12000 code-projects Blood Bank System Setting updatesettings.php cross site scripting

A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting. Th...

CVE-2024-11998

A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-11998 code-projects Farmacia visualizer-forneccedor.chp sql injection

A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-11998 code-projects Farmacia visualizer-forneccedor.chp sql injection

A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...