3482 matches found
Sql injection
A vulnerability was found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file viewbranch.php. The manipulation of the argument branchid leads to sql injection. The attack may be launched remotely. Th...
CVE-2023-2776
The vulnerability CVE-2023-2776 affects code-projects Simple Photo Gallery 1.0. Affects uploading logic in the application, due to lack of validation, enabling arbitrary file uploads. This can be exploited remotely and may lead to unauthorized actions on the server, with high impact noted in NVD ...
CVE-2023-2776 code-projects Simple Photo Gallery unrestricted upload
A vulnerability was found in code-projects Simple Photo Gallery 1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-229282 is the identifier assigned to this vulnerability...
CVE-2023-2775 code-projects Bus Dispatch and Information System adminHome.php sql injection
A vulnerability was found in code-projects Bus Dispatch and Information System 1.0. It has been classified as critical. This affects an unknown part of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2023-2775
Affected: code-projects Bus Dispatch and Information System 1.0. Vulnerable component: adminHome.php. Root cause: manipulation of the reach_city argument enables SQL injection, with remote exploit possible. Public exploit disclosed. Documents also mention related advisories (VDB-229281). Impact a...
CVE-2023-2774 code-projects Bus Dispatch and Information System view_branch.php sql injection
A vulnerability was found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file viewbranch.php. The manipulation of the argument branchid leads to sql injection. The attack may be launched remotely. Th...
CVE-2023-2774
CVE-2023-2774 affects code-projects Bus Dispatch and Information System 1.0, targeting the view_branch.php/view branch.php component. The root cause is improper handling of the branchid parameter, enabling SQL injection that can be exploited remotely. Multiple sources confirm a public exploit exi...
Sql injection
A vulnerability has been found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file viewadmin.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...
CVE-2023-2773 code-projects Bus Dispatch and Information System view_admin.php sql injection
A vulnerability has been found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file viewadmin.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...
CVE-2023-2773
CVE-2023-2773 affects code-projects Bus Dispatch and Information System 1.0. The vulnerability is a SQL injection in the view_admin.php functionality triggered by manipulating the adminid parameter. The issue can be exploited remotely, and the vulnerability impact is described as high (confidenti...
PT-2023-21312 · Unknown · Code-Projects Bus Dispatch/Information System
Name of the Vulnerable Software and Affected Versions: code-projects Bus Dispatch and Information System version 1.0 Description: A critical issue was found in the code-projects Bus Dispatch and Information System, affecting some unknown functionality of the file view branch.php. The manipulation...
Design/Logic Flaw
A vulnerability, which was classified as critical, was found in code-projects Simple Online Hotel Reservation System 1.0. Affected is an unknown function of the file addroom.php. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. VDB-223554 is the...
CVE-2023-1498
A vulnerability classified as critical has been found in code-projects Responsive Hotel Site 1.0. Affected is an unknown function of the file messages.php of the component Newsletter Log Handler. The manipulation of the argument title leads to sql injection. It is possible to launch the attack...
Sql injection
A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is an unknown functionality of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. The attack can be launched remotely. The exploit has...
CVE-2023-1500 code-projects Simple Art Gallery adminHome.php cross site scripting
A vulnerability, which was classified as problematic, has been found in code-projects Simple Art Gallery 1.0. Affected by this issue is some unknown functionality of the file adminHome.php. The manipulation of the argument aboutinfo leads to cross site scripting. The attack may be launched...
CVE-2023-1499
The CVE-2023-1499 issue affects code-projects Simple Art Gallery 1.0, where the adminHome.php function handling the reach_city parameter is vulnerable to SQL injection. The vulnerability is triggered remotely and exploitation has been disclosed publicly. Connected sources consistently cite a SQL ...
CVE-2023-1499 code-projects Simple Art Gallery adminHome.php sql injection
A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is an unknown functionality of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. The attack can be launched remotely. The exploit has...
CVE-2023-1498 code-projects Responsive Hotel Site Newsletter Log messages.php sql injection
A vulnerability classified as critical has been found in code-projects Responsive Hotel Site 1.0. Affected is an unknown function of the file messages.php of the component Newsletter Log Handler. The manipulation of the argument title leads to sql injection. It is possible to launch the attack...
CVE-2023-1498 code-projects Responsive Hotel Site Newsletter Log messages.php sql injection
A vulnerability classified as critical has been found in code-projects Responsive Hotel Site 1.0. Affected is an unknown function of the file messages.php of the component Newsletter Log Handler. The manipulation of the argument title leads to sql injection. It is possible to launch the attack...
College Management System SQL Injection Vulnerability (CNVD-2022-81235)
College Management System is a simple project organized by Code Projects. It is used to keep track of students, teachers, subjects, schedules and all things related to college. College Management System v1.0 suffers from a SQL injection vulnerability that can be exploited to insert SQL commands...