CVE-2024-4929

A vulnerability classified as problematic has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/admin/ajax.php?action=saveuser. The manipulation leads to cross-site request forgery. It is possible to initiate the...

CVE-2024-4930

The CVE-2024-4930 entry affects SourceCodester Simple Online Bidding System 1.0, with a SQL injection described in the index.php?page=view_prod endpoint due to manipulation of the id parameter. The vulnerability is remote and has been publicly disclosed, implying potential exploitation vectors, t...

CVE-2024-4913

A vulnerability classified as critical was found in Campcodes Online Examination System 1.0. This vulnerability affects unknown code of the file exam.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

CVE-2024-4913

A vulnerability classified as critical was found in Campcodes Online Examination System 1.0. This vulnerability affects unknown code of the file exam.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

CVE-2024-4818

A vulnerability was found in Campcodes Online Laundry Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

CVE-2024-4800

A vulnerability has been found in Kashipara College Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file submitstudent.php. The manipulation of the argument dateofbirth leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2024-4732

A vulnerability, which was classified as problematic, has been found in Campcodes Legal Case Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/service. The manipulation of the argument name leads to cross site scripting. The attack may be launched...

CVE-2024-4714

A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /model/updatesubject.php. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-4682

A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /view/examtimetableupdateform.php. The manipulation of the argument exam leads to cross site scripting...

CVE-2024-4676

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /view/rangegradetext.php. The manipulation of the argument count leads to cross site scripting. The attack may be initiated...

CVE-2024-4675

A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /view/showevents.php. The manipulation of the argument eventid leads to cross site scripting. The attack can be initiated...

CVE-2024-4818

CVE-2024-4818 affects Campcodes Online Laundry Management System 1.0. A vulnerability in the /index.php? page parameter enables (remote) file inclusion via manipulation of the page argument. This is a network-accessible path with no authentication required; the impact wording in sources cites pos...

CVE-2024-4792

CVE-2024-4792 affects Campcodes Online Laundry Management System 1.0. The vulnerability is a SQL injection in /admin_class.php arising from manipulating parameters such as id/delete_category/delete_inv/delete_laundry/delete_supply/delete_user/login/save_inv/save_user. It can be triggered remotely...

PT-2024-32022

Name of the Vulnerable Software and Affected Versions BlueNet Technology Clinical Browsing System version 1.2.1 Description A critical issue exists in BlueNet Technology Clinical Browsing System version 1.2.1 related to SQL injection. The issue affects an unknown functionality within the...

PT-2024-32014 · Unknown · Campcodes Complete Web-Based School Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A problematic vulnerability has been found in the system, affecting an unknown part of the file /view/student exam mark insert form1.php. The manipulation of the...

CVE-2024-4595

Summary: CVE-2024-4595 affects SEMCMS up to version 4.8, with the vulnerability located in the locate function of function.php. The issue enables SQL injection due to improper validation of external input, and can be exploited remotely. Multiple connected sources corroborate the vulnerable compon...

CVE-2024-4595 SEMCMS function.php locate sql injection

A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is the function locate of the file function.php. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

CVE-2024-4594

This CVE affects DedeCMS 5.7. Affected component is an unknown function in /src/dede/sys_safe.php, where manipulation enables cross-site request forgery. The vulnerability can be exploited remotely and an exploit has been disclosed publicly. Several connected sources corroborate the issue and ref...

CVE-2024-4524

A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/studentpaymentinvoice.php. The manipulation of the argument desc leads to cross site scripting. It is possible to initiate t...

CVE-2024-4516

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /view/timetable.php. The manipulation of the argument grade leads to cross site scripting. The attack may be...