3482 matches found
CVE-2024-24096
Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via BookSBIN...
CVE-2024-24095
Code-projects Simple Stock System 1.0 is vulnerable to SQL Injection...
CVE-2024-24096
Code-projects Computer Book Store 1.0 is affected by an SQL Injection vulnerability exposed through BookSBIN. The CVE entry notes a Local attacker with Low privileges can exploit this, with no user interaction required, and impacts confidentiality, integrity, and availability (base score 7.8, HIG...
CVE-2024-24100
CVE-2024-24100 affects Code-projects Computer Book Store 1.0. The issue is a SQL Injection via the PublisherID parameter in the application, constituting an input handling flaw that can lead to unauthorized data exposure or modification. The CVSS 3.1 metrics given indicate a high-severity, networ...
CVE-2024-24099
Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Employment Status Information Update...
CVE-2024-24100
Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via PublisherID...
CVE-2024-24099
CVE-2024-24099 affects Code-projects Scholars Tracking System 1.0. Multiple sources (NVD, Red Hat, CNVD, CNVD-like entries, CVE list) describe a SQL Injection vulnerability in the Employment Status Information Update. Root cause: lack of validation for externally supplied SQL statements. Impact i...
CVE-2024-24100
Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via PublisherID...
CVE-2024-24099
Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Employment Status Information Update...
CVE-2024-24095
CVE-2024-24095 affects Code-projects Simple Stock System 1.0 and is a reported SQL Injection vulnerability. The entry is rated with a high/critical impact (CVSSv3.1 base score 9.8; NETWORK exploitability, no user interaction required; confidentiality, integrity, and availability are all at high i...
CVE-2024-24096
Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via BookSBIN...
PT-2024-20271 · Unknown · Code-Projects Computer Book Store
Name of the Vulnerable Software and Affected Versions: Code-projects Computer Book Store version 1.0 Description: The issue is related to SQL Injection via the PublisherID. This allows for potential unauthorized access to sensitive data. There is no information provided about the estimated number...
PT-2024-20270 · Unknown · Code-Projects Scholars Tracking System
Name of the Vulnerable Software and Affected Versions: Code-projects Scholars Tracking System version 1.0 Description: The issue is related to SQL Injection under Employment Status Information Update. This allows for potential exploitation of the system's database. Recommendations: For...
Sql injection
A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file Source/librarian/user/student/lost-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched...
CVE-2024-1830
CVE-2024-1830 affects code-projects Library System 1.0. The vulnerable component is the file Source/librarian/user/student/lost-password.php, where the manipulation of the email parameter leads to an SQL injection. The issue can be exploited remotely and the exploit has been disclosed publicly. R...
CVE-2024-1830 code-projects Library System lost-password.php sql injection
A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file Source/librarian/user/student/lost-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched...
CVE-2024-1830 code-projects Library System lost-password.php sql injection
A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file Source/librarian/user/student/lost-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched...
CVE-2024-1827
A vulnerability was found in code-projects Library System 1.0 and classified as critical. This issue affects some unknown processing of the file Source/librarian/user/teacher/login.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated remotely...
CVE-2024-1828
A vulnerability was found in code-projects Library System 1.0. It has been classified as critical. Affected is an unknown function of the file Source/librarian/user/teacher/registration.php. The manipulation of the argument email/idno/phone/username leads to sql injection. It is possible to launc...
Sql injection
A vulnerability was found in code-projects Library System 1.0. It has been classified as critical. Affected is an unknown function of the file Source/librarian/user/teacher/registration.php. The manipulation of the argument email/idno/phone/username leads to sql injection. It is possible to launc...