CVE-2024-41357

phpipam 1.6 is vulnerable to Cross Site Scripting XSS via /app/admin/powerDNS/record-edit.php...

CVE-2024-6937 formtools.org Form Tools Import Option List edit.php curl_exec file inclusion

A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1. Affected is the function curlexec of the file /admin/forms/optionlists/edit.php of the component Import Option List. The manipulation of the argument url leads to file inclusion. It is possible to...

PT-2024-31839 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7 Description: A vulnerability was found in DedeCMS, affecting an unknown functionality of the file /src/dede/mytag edit.php. This issue leads to cross-site request forgery and can be launched remotely. Recommendations: For...

CVE-2024-3428

A vulnerability has been found in SourceCodester Online Courseware 1.0 and classified as problematic. This vulnerability affects unknown code of the file edit.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...

CVE-2024-3428 SourceCodester Online Courseware edit.php cross site scripting

A vulnerability has been found in SourceCodester Online Courseware 1.0 and classified as problematic. This vulnerability affects unknown code of the file edit.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...

CVE-2024-3428

CVE-2024-3428 affects SourceCodester Online Courseware 1.0 in the edit.php file, where manipulation of the id parameter leads to cross-site scripting. The vulnerability is exploitable remotely, and public disclosures exist. Multiple connected sources confirm the issue and the affected component (...

CVE-2024-3419

CVE-2024-3419 affects SourceCodester Online Courseware 1.0; SQL injection via the id parameter in admin/edit.php is the root cause. The vulnerability is exploitable remotely and exploits have been publicly disclosed. No patch/version fix details are provided in the connected documents. Mitigation...

PT-2024-25729 · Unknown · Sourcecodester Online Courseware

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Courseware version 1.0 Description: A critical issue has been found in the software, affecting an unknown functionality of the file admin/edit.php. The manipulation of the id argument leads to SQL injection. The attack c...

PT-2024-22343 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7 Description: A problematic issue was found in DedeCMS, affecting an unknown part of the file /src/dede/vote edit.php. The manipulation of the aid argument leads to cross-site request forgery. It is possible to initiate the...

CVE-2024-1702 keerti1924 PHP-MYSQL-User-Login-System edit.php sql injection

A vulnerability was found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /edit.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the publi...

CVE-2024-1701 keerti1924 PHP-MYSQL-User-Login-System edit.php access control

A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...

Sql injection

Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /edit.php...

Employee Managment System SQL Injection Vulnerability

Employee Managment System is an employee management system. An SQL injection vulnerability exists in Employee Managment System v1.0, which originates from a SQL injection vulnerability in the file /edit.php...

CVE-2024-22715

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

CVE-2024-22715

Summary (from provided records): Stupid Simple CMS

CVE-2024-22715

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

CVE-2023-51246

A Cross Site Scripting XSS vulnerability in GetSimple CMS 3.3.16 exists when using Source Code Mode as a backend user to add articles via the /admin/edit.php page...

CVE-2023-51246

CVE-2023-51246 concerns GetSimple CMS 3.3.16 where an XSS exists when a backend user adds articles via /admin/edit.php with Source Code Mode active. The root cause is inadequate filtering/escaping of user-supplied data during article creation, leading to arbitrary script execution. Affected produ...

CVE-2023-33479

RemoteClinic version 2.0 contains a SQL injection vulnerability in the /staff/edit.php file...

CVE-2023-33479

RemoteClinic version 2.0 contains a SQL injection vulnerability in the /staff/edit.php file...