182 matches found
PT-2024-34372 · Unopim · Unopim
Name of the Vulnerable Software and Affected Versions: UnoPim versions 0.1.3 and below Description: The issue is related to Cross Site Scripting XSS in the Create User function, allowing attackers to perform XSS via an SVG document. This can be used to steal cookies. The vulnerability is exploite...
The vulnerability of the qedr component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the qedr component in the Linux operating system’s kernel is related to incorrect blocking in the qedrcreateuserqp function. Exploiting this vulnerability can allow an attacker to cause a service failure...
SQL Injection
Overview centreon/centreon is a network, system, applicative supervision and monitoring tool. Affected versions of this package are vulnerable to SQL Injection via the create user form inputs. Remediation Upgrade centreon/centreon to version 22.10.24, 23.4.21, 23.10.16, 24.4.6 or higher. Referenc...
Aero CMS 0.0.1 Cross Site Request Forgery
============================================================================================================================================= | Title : Aero CMS v0.0.1 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits | | Vendor...
PT-2024-6878 · Centreon · Centreon
Name of the Vulnerable Software and Affected Versions: Centreon version 24.04.2 Description: A SQL injection vulnerability allows a remote high-privileged attacker to execute arbitrary SQL commands via create user form inputs. This issue is related to the lack of protection of the SQL query...
CVE-2024-33305
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Middle Name" parameter in Create User...
CVE-2024-33305
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Middle Name" parameter in Create User...
PT-2024-25195 · Sourcecodester · Sourcecodester Computer Laboratory Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Laboratory Management System version 1.0 Description: The issue is related to Cross Site Scripting XSS via the Middle Name parameter in the Create User function. This allows for potential malicious script injection...
CVE-2024-33305
SourceCodester Laboratory Management System 1.0 is affected by a Cross Site Scripting (XSS) vulnerability via the Middle Name parameter in Create User. The issue is documented across multiple sources, with CVE-2024-33305 noting an XSS path and a CVSS v3.1 base score of 6.1 (Network attack vector,...
CVE-2024-33305
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Middle Name" parameter in Create User...
CVE-2024-33307
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Last Name" parameter in Create User...
CVE-2024-33306
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" parameter in Create User...
CVE-2024-33306
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" parameter in Create User...
CVE-2024-33307
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Last Name" parameter in Create User...
CVE-2024-33306
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" parameter in Create User...
CVE-2024-33307
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Last Name" parameter in Create User...
PT-2024-25196 · Sourcecodester · Sourcecodester Computer Laboratory Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Laboratory Management System version 1.0 Description: The issue is related to Cross Site Scripting XSS via the First Name parameter in the Create User function. This allows for potential malicious script injection...
PT-2024-25197 · Sourcecodester · Sourcecodester Computer Laboratory Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Laboratory Management System version 1.0 Description: The issue is related to Cross Site Scripting XSS via the Last Name parameter in the Create User function. This allows for potential malicious script injection...
CVE-2024-33306
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" parameter in Create User...
CVE-2024-33307
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "Last Name" parameter in Create User...