Lucene search
+L

33 matches found

CVE
CVE
added 2024/10/25 1:0 a.m.52 views

CVE-2024-10369

CVE-2024-10369 affects Codezips Sales Management System 1.0. The vulnerability is a SQL injection in the /addcustcom.php file, triggered by manipulating the refno parameter. It is exploitable remotely and impacts confidentiality, integrity, and availability. Multiple sources confirm the issue and...

9.8CVSS7.7AI score0.00795EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/25 1:0 a.m.10 views

CVE-2024-10368 Codezips Sales Management System addstock.php sql injection

A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prodtype leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS7.6AI score0.00663EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/10/25 1:0 a.m.35 views

CVE-2024-10368 Codezips Sales Management System addstock.php sql injection

A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prodtype leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS0.00663EPSS
Exploits1References4
NVD
NVD
added 2024/10/20 3:15 a.m.19 views

CVE-2024-10167

A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to...

9.8CVSS0.00628EPSS
Exploits1References4
NVD
NVD
added 2024/10/20 3:15 a.m.12 views

CVE-2024-10166

A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit has been...

9.8CVSS0.00663EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/20 3:0 a.m.13 views

CVE-2024-10167 Codezips Sales Management System deletecustind.php sql injection

A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to...

7.5CVSS7.4AI score0.00628EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/10/20 3:0 a.m.32 views

CVE-2024-10167 Codezips Sales Management System deletecustind.php sql injection

A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to...

7.5CVSS0.00628EPSS
Exploits1References4
CVE
CVE
added 2024/10/20 3:0 a.m.44 views

CVE-2024-10167

CVE-2024-10167 affects Codezips Sales Management System 1.0, specifically the file deletecustind.php where the parameter id can be manipulated to cause SQL injection. The vulnerability enables remote exploitation and was disclosed publicly. Root cause stated: unsafely handling the id parameter le...

9.8CVSS7.7AI score0.00628EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/10/20 2:31 a.m.21 views

CVE-2024-10166 Codezips Sales Management System checkuser.php sql injection

A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit has been...

7.5CVSS0.00663EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/20 2:31 a.m.12 views

CVE-2024-10166 Codezips Sales Management System checkuser.php sql injection

A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit has been...

7.5CVSS7.3AI score0.00663EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/10/20 2:0 a.m.21 views

CVE-2024-10165 Codezips Sales Management System deletecustcom.php sql injection

A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file deletecustcom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The explo...

7.5CVSS0.00663EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/20 2:0 a.m.11 views

CVE-2024-10165 Codezips Sales Management System deletecustcom.php sql injection

A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file deletecustcom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The explo...

7.5CVSS7.4AI score0.00663EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.7 views

PT-2024-16078 · Unknown · Codezips Sales Management System

Name of the Vulnerable Software and Affected Versions: Codezips Sales Management System version 1.0 Description: A critical issue has been found in the Codezips Sales Management System, affecting an unknown functionality of the file deletecustcom.php. The manipulation of the id argument leads to...

9.8CVSS8.2AI score0.00663EPSS
Exploits1References11
Rows per page
Query Builder