995 matches found
CVE-2022-41446
An access control issue in /Admin/dashboard.php of Record Management System using CodeIgniter v1.0 allows attackers to access and modify user data...
CVE-2022-41445
A cross-site scripting XSS vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page...
CVE-2022-41445
A cross-site scripting XSS vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page...
Cross site scripting
A cross-site scripting XSS vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page...
CVE-2022-41445
A cross-site scripting XSS vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page...
CVE-2022-41445
A cross-site scripting XSS vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page...
CVE-2022-41445
CVE-2022-41445 affects the Record Management System using CodeIgniter 1.0. The vulnerability is a cross-site scripting (XSS) flaw on the Add Subject page, arising from insufficient input filtering/escaping. Impact is arbitrary script/HTML execution within the victim’s browser (Confidentiality/Int...
PT-2022-25875 · Unknown · Record Management System +1
Name of the Vulnerable Software and Affected Versions: Record Management System using CodeIgniter version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "Add Subject" page. Recommendations: For...
Ecommerce CodeIgniter Bootstrap 1.0 Cross Site Scripting
Title: Ecommerce-CodeIgniter-Bootstrap-1.0 Cross-site scripting reflected RCE Author: nu11secur1ty Date: 10.29.2022 Vendor: https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap Software: https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/archive/refs/heads/master.zip...
Exploit for Exposure of Resource to Wrong Sphere in Phpgurukul_Blood_Donor_Management_System_Project Phpgurukul_Blood_Donor_Management_System
CVE-2022-38813 Veritical Privilege Escalation via user parame...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper implementation of ornotlike function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper implementation of orwherein function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper implementation of having function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper implementation of like function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper implementation of orwherenotin function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper implementation of where function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists in the orwhere function of DBquerybuilder.php, allowing an attacker to inject and execute malicious sql queries...
SQL Injection
CodeIgniter is vulnerable to sql injection. The vulnerability exists due to improper handling of orhaving function of DBquerybuilder.php which allows an attacker to inject and execute malicious sql queries in the system...
CVE-2022-40835
B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php. Note: Multiple third parties have disputed this as not a valid vulnerability...
CVE-2022-40833
B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orwherein function. Note: Multiple third parties have disputed this as not a valid vulnerability...