CVE-2023-7142 code-projects Client Details System clientview.php sql injection

A vulnerability was found in code-projects Client Details System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/clientview.php. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed to th...

CVE-2023-7142

Summary (CVE-2023-7142): Code-Projects Client Details System 1.0 contains a SQL injection in /admin/clientview.php via the ID parameter. The vulnerability arises from manipulation of the ID argument, with public disclosure of the exploit. NVD lists CVSS-3.1 scores ranging from 9.8 (CRITICAL) to o...

CVE-2023-7141 code-projects Client Details System update-clients.php sql injection

A vulnerability was found in code-projects Client Details System 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/update-clients.php. The manipulation of the argument uid leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2023-7139

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql...

CVE-2023-7140

CVE-2023-7140 affects code-projects Client Details System 1.0. The vulnerability arises from manipulating the id parameter in /admin/manage-users.php, leading to a SQL injection. Multiple connected sources corroborate an in-the-wild exploit and public disclosure. The exact impacted versions and a...

CVE-2023-7139

The CVE-2023-7139 entry affects the code-projects Client Details System 1.0 . A vulnerability exists in the file /admin/regester.php of the HTTP POST Request Handler where manipulation of the arguments fname , lname , email , and contact leads to an SQL injection . The vulnerability has been disc...

CVE-2023-7139 code-projects Client Details System HTTP POST Request regester.php sql injection

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql...

CVE-2023-7137

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the component HTTP POST Request Handler. The manipulation of the argument uemail leads to sql injection. The exploit has been...

CVE-2023-7138

A vulnerability, which was classified as critical, was found in code-projects Client Details System 1.0. This affects an unknown part of the file /admin of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to...

CVE-2023-7137

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the component HTTP POST Request Handler. The manipulation of the argument uemail leads to sql injection. The exploit has been...

Sql injection

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the component HTTP POST Request Handler. The manipulation of the argument uemail leads to sql injection. The exploit has been...

Sql injection

A vulnerability, which was classified as critical, was found in code-projects Client Details System 1.0. This affects an unknown part of the file /admin of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to...

CVE-2023-7138 code-projects Client Details System HTTP POST Request admin sql injection

A vulnerability, which was classified as critical, was found in code-projects Client Details System 1.0. This affects an unknown part of the file /admin of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to...

CVE-2023-7138 code-projects Client Details System HTTP POST Request admin sql injection

A vulnerability, which was classified as critical, was found in code-projects Client Details System 1.0. This affects an unknown part of the file /admin of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to...

CVE-2023-7138

The CVE-2023-7138 entry applies to code-projects Client Details System 1.0. Affected component: HTTP POST Request Handler (file area /admin). Root cause: manipulation of the username argument enables SQL injection. Impact details in sources indicate high risk across confidentiality, integrity, an...

CVE-2023-7137

CVE-2023-7137 affects code-projects Client Details System 1.0. Multiple connected documents confirm a SQL injection in the HTTP POST Request Handler via the uemail parameter (in /clientdetails/), with the vulnerable software version reported as 1.0. The issue is described as critical, with exploi...

Cross site scripting

A vulnerability classified as problematic was found in code-projects Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /main/doctype.php of the component Document Type Handler. The manipulation of the argument docname with the input " leads to...

CVE-2023-7136

CVE-2023-7136 affects code-projects Record Management System 1.0, specifically the Document Type Handler’s /main/doctype.php. The vulnerability stems from manipulating the docname parameter with input like >, enabling cross-site scripting. Exploitation is possible remotely and the exploit has ...

CVE-2023-7135 code-projects Record Management System Offices offices.php cross site scripting

A vulnerability classified as problematic has been found in code-projects Record Management System 1.0. Affected is an unknown function of the file /main/offices.php of the component Offices Handler. The manipulation of the argument officename with the input " leads to cross site scripting. It is...

CVE-2023-7132

A vulnerability was found in code-projects Intern Membership Management System 2.0. It has been classified as problematic. This affects an unknown part of the file /userregistration/ of the component User Registration. The manipulation of the argument userName/firstName/lastName/userEmail with th...