33 matches found
CVE-2024-10369
CVE-2024-10369 affects Codezips Sales Management System 1.0. The vulnerability is a SQL injection in the /addcustcom.php file, triggered by manipulating the refno parameter. It is exploitable remotely and impacts confidentiality, integrity, and availability. Multiple sources confirm the issue and...
CVE-2024-10368 Codezips Sales Management System addstock.php sql injection
A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prodtype leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-10368 Codezips Sales Management System addstock.php sql injection
A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prodtype leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-10167
A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to...
CVE-2024-10166
A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2024-10167 Codezips Sales Management System deletecustind.php sql injection
A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to...
CVE-2024-10167 Codezips Sales Management System deletecustind.php sql injection
A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to...
CVE-2024-10167
CVE-2024-10167 affects Codezips Sales Management System 1.0, specifically the file deletecustind.php where the parameter id can be manipulated to cause SQL injection. The vulnerability enables remote exploitation and was disclosed publicly. Root cause stated: unsafely handling the id parameter le...
CVE-2024-10166 Codezips Sales Management System checkuser.php sql injection
A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2024-10166 Codezips Sales Management System checkuser.php sql injection
A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2024-10165 Codezips Sales Management System deletecustcom.php sql injection
A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file deletecustcom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The explo...
CVE-2024-10165 Codezips Sales Management System deletecustcom.php sql injection
A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file deletecustcom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The explo...
PT-2024-16078 · Unknown · Codezips Sales Management System
Name of the Vulnerable Software and Affected Versions: Codezips Sales Management System version 1.0 Description: A critical issue has been found in the Codezips Sales Management System, affecting an unknown functionality of the file deletecustcom.php. The manipulation of the id argument leads to...