Out-of-bounds

A vulnerability was found in code-projects Admission Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file studentavatar.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

CVE-2023-5829 code-projects Admission Management System student_avatar.php unrestricted upload

A vulnerability was found in code-projects Admission Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file studentavatar.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

CVE-2023-5829

CVE-2023-5829 affects code-projects Admission Management System 1.0. The vulnerable component is the file student_avatar.php, where manipulation enables an unrestricted upload, potentially enabling remote compromise. Public disclosures exist; exploit details are discussed in multiple sources. Aff...

CVE-2023-5829 code-projects Admission Management System student_avatar.php unrestricted upload

A vulnerability was found in code-projects Admission Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file studentavatar.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

CVE-2023-42253

Code-Projects Vehicle Management 1.0 is vulnerable to Cross Site Scripting XSS in Add Accounts via Invoice No, To, and Mammul...

CVE-2023-42253

Code-Projects Vehicle Management 1.0 is vulnerable to Cross Site Scripting (XSS) in the Add Accounts workflow via Invoice No, To, and Mammul. The vulnerability is documented under CVE-2023-42253 across multiple sources, with general indication of XSS risk but without concrete exploitation details...

CVE-2023-42253

Code-Projects Vehicle Management 1.0 is vulnerable to Cross Site Scripting XSS in Add Accounts via Invoice No, To, and Mammul...

CVE-2023-37070

Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting XSS...

Cross site scripting

Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting XSS...

Hospital Information System Cross-Site Scripting Vulnerability

Hospital Information System is a hospital information management system organized by SourceCode and Projects. A security vulnerability exists in Code Projects Hospital Information System version 1.0 that stems from a cross-site scripting XSS vulnerability...

PT-2023-25784 · Unknown · Code Projects Hospital Information System

Name of the Vulnerable Software and Affected Versions: Code Projects Hospital Information System version 1.0 Description: The issue is related to Cross Site Scripting XSS, which is a type of security vulnerability that can be exploited by attackers to inject malicious scripts into websites. No...

CVE-2023-37070

Affected software: Code Projects Hospital Information System 1.0. The entry indicates a Cross Site Scripting (XSS) vulnerability in this system. The documents do not provide explicit root-cause details or affected components beyond the product/version, nor do they describe exploits or in-the-wild...

CVE-2023-37070

Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting XSS...

CVE-2023-37070

Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting XSS...

Sql injection

Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the login id and password fields during the login...

CVE-2023-37069

Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection due to failure to validate input in the login id and password fields, allowing attackers to inject SQL into queries. The vulnerability is tied to the login process and could enable manipulation of backend queries....

CVE-2023-37069

Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the login id and password fields during the login...

CVE-2023-37068

Code-Projects Gym Management System V1.0 allows remote attackers to execute arbitrary SQL commands via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username and password field...

Sql injection

Code-Projects Gym Management System V1.0 allows remote attackers to execute arbitrary SQL commands via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username and password field...

CVE-2023-37068

Code-Projects Gym Management System V1.0 allows remote attackers to execute arbitrary SQL commands via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username and password field...