3482 matches found
CVE-2023-7111
A vulnerability, which was classified as critical, was found in code-projects Library Management System 2.0. Affected is an unknown function of the file index.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
Sql injection
A vulnerability, which was classified as critical, was found in code-projects Library Management System 2.0. Affected is an unknown function of the file index.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-7111 code-projects Library Management System index.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Library Management System 2.0. Affected is an unknown function of the file index.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-7111
The CVE-2023-7111 entry describes a SQL injection in code-projects Library Management System 2.0, affecting the category parameter in index.php. Multiple connected sources confirm remote exploitation and public disclosure (VDB-249006). The underlying issue is lack of input validation in the categ...
CVE-2023-7110
CVE-2023-7110 affects code-projects Library Management System 2.0. The vulnerability resides in login.php where manipulation of the student parameter enables SQL injection. It is exploitable remotely and has been publicly disclosed. Affected software is Library Management System 2.0; root cause i...
CVE-2023-7109 code-projects Library Management System login.php sql injection
A vulnerability classified as critical was found in code-projects Library Management System 2.0. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-7109 code-projects Library Management System login.php sql injection
A vulnerability classified as critical was found in code-projects Library Management System 2.0. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-7109
The CVE-2023-7109 entry applies to code-projects Library Management System 2.0, specifically the /admin/login.php file. The vulnerability is a SQL injection caused by manipulation of the username parameter, exploitable remotely. Public disclosure of the exploit is noted. Impact is described in al...
CVE-2023-7108 code-projects E-Commerce Website user_signup.php cross site scripting
A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file usersignup.php. The manipulation of the argument firstname with the input leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2023-7108
CVE-2023-7108 describes a cross-site scripting vulnerability in code-projects’ E-Commerce Website 1.0. The issue resides in an unknown part of the file user_signup.php, where the argument firstname can be injected with a payload such as , enabling remote initiation of the attack. Affected product...
CVE-2023-7108 code-projects E-Commerce Website user_signup.php cross site scripting
A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file usersignup.php. The manipulation of the argument firstname with the input leads to cross site scripting. It is possible to initiate the attack remotely. The...
PT-2023-32879 · Unknown · Code-Projects Library Management System
Name of the Vulnerable Software and Affected Versions: code-projects Library Management System version 2.0 Description: A critical issue was found in the code-projects Library Management System, affecting the file /admin/login.php. The manipulation of the username argument leads to SQL injection...
CVE-2023-7107 code-projects E-Commerce Website user_signup.php sql injection
A vulnerability was found in code-projects E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file usersignup.php. The manipulation of the argument firstname/middlename/email/address/contact/username leads to sql injection. The attac...
CVE-2023-7107
CVE-2023-7107 affects code-projects E-Commerce Website 1.0, exploiting SQL injection in the file user_signup.php. The vulnerability targets the parameters firstname, middlename, email, address, contact, and username, enabling remote manipulation of SQL queries. Impact is described with high conce...
CVE-2023-7107 code-projects E-Commerce Website user_signup.php sql injection
A vulnerability was found in code-projects E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file usersignup.php. The manipulation of the argument firstname/middlename/email/address/contact/username leads to sql injection. The attac...
CVE-2023-7106
CVE-2023-7106 involves a SQL injection in the code-projects E-Commerce Website 1.0. The vulnerability stems from unsafely handling the prod_id parameter in the file product_details.php, enabling attacker-controlled input to influence SQL queries. Reports indicate the flaw can be exploited remotel...
CVE-2023-7097
A vulnerability classified as critical has been found in code-projects Water Billing System 1.0. This affects an unknown part of the file /addbill.php. The manipulation of the argument ownersid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2023-7097 code-projects Water Billing System addbill.php sql injection
A vulnerability classified as critical has been found in code-projects Water Billing System 1.0. This affects an unknown part of the file /addbill.php. The manipulation of the argument ownersid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
CVE-2023-7096
A flaw has been found in code-projects Faculty Management System 1.0. The affected element is an unknown function of the file /admin/php/crud.php. This manipulation of the argument fieldname/tablename causes sql injection. The attack is possible to be carried out remotely. The exploit has been...
Sql injection
A vulnerability was found in code-projects Faculty Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/php/crud.php. The manipulation of the argument fieldname leads to sql injection. The attack may be launched remotely. Th...