CVE-2024-0477

CVE-2024-0477 affects code-projects Fighting Cock Information System 1.0, with a SQL injection vulnerability in /admin/action/update-deworm.php caused by unsafely handling the usage_deworm argument. The issue is exploitable remotely, and the vulnerability has been publicly disclosed. Multiple sou...

CVE-2024-0475

CVE-2024-0475 affects code-projects Dormitory Management System 1.0, specifically the modifyuser.php file where the user_id argument can be manipulated to achieve SQL injection. Multiple connected sources confirm a remote-exploitable vulnerability with high impact on confidentiality, integrity, a...

CVE-2024-0475 code-projects Dormitory Management System modifyuser.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Dormitory Management System 1.0. Affected by this issue is some unknown functionality of the file modifyuser.php. The manipulation of the argument userid leads to sql injection. The attack may be launched remotely...

CVE-2024-0474

A vulnerability classified as critical was found in code-projects Dormitory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit h...

Sql injection

A vulnerability classified as critical was found in code-projects Dormitory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit h...

CVE-2024-0474

CVE-2024-0474 affects code-projects Dormitory Management System 1.0. The vulnerability is in the login.php file, where manipulation of the username parameter leads to an SQL injection. It is described as exploitable remotely and has public exploit/public disclosures. NVD reports a critical severi...

CVE-2024-0474 code-projects Dormitory Management System login.php sql injection

A vulnerability classified as critical was found in code-projects Dormitory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit h...

CVE-2024-0473 code-projects Dormitory Management System comment.php sql injection

A vulnerability classified as critical has been found in code-projects Dormitory Management System 1.0. Affected is an unknown function of the file comment.php. The manipulation of the argument com leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

CVE-2024-0472 code-projects Dormitory Management System modifyuser.php information disclosure

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file modifyuser.php. The manipulation of the argument mname leads to information disclosure. The exploit has been disclosed to the public...

CVE-2024-0472 code-projects Dormitory Management System modifyuser.php information disclosure

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file modifyuser.php. The manipulation of the argument mname leads to information disclosure. The exploit has been disclosed to the public...

CVE-2024-0472

Code-projects Dormitory Management System 1.0 is affected in modifyuser.php; the mname parameter manipulation leads to information disclosure. The vulnerability is publicly disclosed (VDB-250577) and has multiple references across CVE records and vendor pages. Details across connected sources con...

CVE-2024-0469

A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updatepersonalinfo.php. The manipulation of the argument sex leads to sql injection. The attack may be launched remotely. Th...

Sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updatepersonalinfo.php. The manipulation of the argument sex leads to sql injection. The attack may be launched remotely. Th...

Sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /adminroute/decservicecredits.php. The manipulation of the argument date leads to sql injection. The attack can be initiated...

Sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been classified as critical. This affects an unknown part of the file /adminroute/incservicecredits.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

CVE-2024-0471 code-projects Human Resource Integrated System dec_service_credits.php sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /adminroute/decservicecredits.php. The manipulation of the argument date leads to sql injection. The attack can be initiated...

CVE-2024-0471

CVE-2024-0471 affects code-projects Human Resource Integrated System 1.0 in the /admin_route/dec_service_credits.php file. The root cause is manipulation of the date parameter that enables SQL injection. This vulnerability has been described as critical and is exploitable remotely, with public di...

CVE-2024-0470 code-projects Human Resource Integrated System inc_service_credits.php sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been classified as critical. This affects an unknown part of the file /adminroute/incservicecredits.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

CVE-2024-0470 code-projects Human Resource Integrated System inc_service_credits.php sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been classified as critical. This affects an unknown part of the file /adminroute/incservicecredits.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

CVE-2024-0469 code-projects Human Resource Integrated System update_personal_info.php sql injection

A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updatepersonalinfo.php. The manipulation of the argument sex leads to sql injection. The attack may be launched remotely. Th...