25 matches found
CVE-2023-4869
A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file update.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...
EUVD-2023-54707
Malicious code in bioql PyPI...
EUVD-2023-54710
Malicious code in bioql PyPI...
CVE-2023-4872
A vulnerability, which was classified as critical, has been found in SourceCodester Contact Manager App 1.0. This issue affects some unknown processing of the file add.php. The manipulation of the argument contact/contactName leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-4872
A vulnerability, which was classified as critical, has been found in SourceCodester Contact Manager App 1.0. This issue affects some unknown processing of the file add.php. The manipulation of the argument contact/contactName leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-4871
A vulnerability classified as critical was found in SourceCodester Contact Manager App 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument contact/contactName leads to sql injection. The attack can be initiated remotely. The exploit has been...
Sql injection
A vulnerability classified as critical was found in SourceCodester Contact Manager App 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument contact/contactName leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-4872 SourceCodester Contact Manager App add.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Contact Manager App 1.0. This issue affects some unknown processing of the file add.php. The manipulation of the argument contact/contactName leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-4872
CVE-2023-4872 affects SourceCodester Contact Manager App 1.0. The vulnerability is a SQL injection in the add.php handling of the contactName argument, enabling remote exploitation. Multiple sources confirm a critical severity with exploitation disclosed publicly (VDB-239357). No patch/version re...
CVE-2023-4872 SourceCodester Contact Manager App add.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Contact Manager App 1.0. This issue affects some unknown processing of the file add.php. The manipulation of the argument contact/contactName leads to sql injection. The attack may be initiated remotely. The explo...
CVE-2023-4870
A vulnerability classified as problematic has been found in SourceCodester Contact Manager App 1.0. This affects an unknown part of the file index.php of the component Contact Information Handler. The manipulation of the argument contactID with the input "alert1 leads to cross site scripting. It ...
Cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Contact Manager App 1.0. This affects an unknown part of the file index.php of the component Contact Information Handler. The manipulation of the argument contactID with the input "alert1 leads to cross site scripting. It ...
CVE-2023-4871 SourceCodester Contact Manager App delete.php sql injection
A vulnerability classified as critical was found in SourceCodester Contact Manager App 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument contact/contactName leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-4871
CVE-2023-4871 affects SourceCodester Contact Manager App 1.0, specifically the delete.php file. The vulnerability stems from manipulations of the contact/contactName (or related contactName parameter) enabling SQL injection via remote access. Public exploit information exists, indicating real-wor...
CVE-2023-4870 SourceCodester Contact Manager App Contact Information index.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Contact Manager App 1.0. This affects an unknown part of the file index.php of the component Contact Information Handler. The manipulation of the argument contactID with the input "alert1 leads to cross site scripting. It ...
CVE-2023-4870 SourceCodester Contact Manager App Contact Information index.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Contact Manager App 1.0. This affects an unknown part of the file index.php of the component Contact Information Handler. The manipulation of the argument contactID with the input "alert1 leads to cross site scripting. It ...
CVE-2023-4870
SourceCodester Contact Manager App 1.0 has a cross-site scripting vulnerability in the index.php component (Contact Information Handler). The issue arises from manipulating the contactID argument (example payload: ">) and is exploitable remotely. Multiple connected sources confirm the vulnerab...
Cross site request forgery (csrf)
A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file update.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...
CVE-2023-4869
CVE-2023-4869 affects SourceCodester Contact Manager App 1.0. The root cause is a cross-site request forgery vulnerability in the update.php file, enabling CSRF exploitation remotely. Public disclosures and multiple sources (NVD, Red Hat advisory, CVE records, and third‑party databases) consisten...
CVE-2023-4868 SourceCodester Contact Manager App add.php cross-site request forgery
A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been...