210 matches found
CVE-2024-25210
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/deleteexpense.php...
Sql injection
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/deleteexpense.php...
PT-2024-20821 · Unknown · Simple Expense Tracker
Name of the Vulnerable Software and Affected Versions: Simple Expense Tracker version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the category parameter at the "/endpoint/delete category.php" endpoint. Recommendations: For Simple...
CVE-2024-25211
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the category parameter at /endpoint/deletecategory.php...
CVE-2024-25211
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the category parameter at /endpoint/deletecategory.php...
CVE-2024-25210
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/deleteexpense.php...
CVE-2024-25210
Simple Expense Tracker v1.0 is affected by a SQL injection in the expense parameter of /endpoint/delete_expense.php. CVSS v3.1 base score 9.8 (CRITICAL) with network attack vector, no authentication, no user interaction. The root cause is injectable SQL via the expense parameter, affecting confid...
Expense Tracker SQL Injection Vulnerability
Expense Tracker is an expense tracker organized by SourceCode and Projects. A security vulnerability exists in Simple Expense Tracker v1.0, which originates from a SQL injection vulnerability in the file /endpoint/deletecategory.php...
Expense Tracker SQL Injection Vulnerability
Expense Tracker is an expense tracker organized by SourceCode and Projects. A security vulnerability exists in Expense Tracker v1.0, which stems from a SQL injection vulnerability in the file /endpoint/deleteexpense.php...
PT-2024-20820 · Unknown · Simple Expense Tracker
Name of the Vulnerable Software and Affected Versions: Simple Expense Tracker version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the expense parameter at the "/endpoint/delete expense.php" API endpoint. Recommendations: For Simp...
CVE-2024-25210
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/deleteexpense.php...
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expensebudget/admin/?page=reports/budget&datestart=2023-12-28&dateend=...
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expensebudget/admin/?page=reports/budget&datestart=2023-12-28&dateend=...
Sql injection
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expensebudget/admin/?page=reports/budget&datestart=2023-12-28&dateend=...
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expensebudget/admin/?page=reports/budget&datestart=2023-12-28&dateend=...
Sourcecodester Budget And Expense Tracker System Security Vulnerability
Sourcecodester Budget And Expense Tracker System is a web-based application by Carlo Montero Personal Developer. It is used to manage your personal/small business budget and expenses. A security vulnerability exists in Sourcecodester Budget And Expense Tracker System v1.0, which stems from the...
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection through the admin reports endpoint: /expense_budget/admin/?page=reports/budget&date_start=2023-12-28&date_end=. The vulnerability affects the endpoint handling date_start/date_end parameters without proper validation, enabling ...
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expensebudget/admin/?page=reports/budget&datestart=2023-12-28&dateend=...
CVE-2023-5286
A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file addcategory.php of the component Category Handler. The manipulation of the argument categoryname leads to cross site...
CVE-2023-5286
A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file addcategory.php of the component Category Handler. The manipulation of the argument categoryname leads to cross site...