PT-2024-17396 · Unknown · Code-Projects Wazifa System

Name of the Vulnerable Software and Affected Versions: code-projects Wazifa System version 1.0 Description: A vulnerability has been found in the code-projects Wazifa System, affecting an unknown function of the file /controllers/updatesettings.php of the component Setting Handler. The manipulati...

CVE-2024-50834

A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters...

CVE-2024-50836

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the firstname and lastname parameters...

CVE-2024-50837

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/adminuser.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the firstname and username parameters...

CVE-2024-50834

The CVE-2024-50834 issue affects KASHIPARA E-learning Management System Project 1.0. A SQL Injection vulnerability exists in /admin/teachers.php exploitable via the firstname and lastname parameters, as documented by multiple sources. Root cause: improper handling of user-supplied input in these ...

CVE-2024-50834

A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters...

PT-2024-34432 · Unknown · Kashipara E-Learning Management System Project

Name of the Vulnerable Software and Affected Versions: KASHIPARA E-learning Management System Project version 1.0 Description: A SQL Injection issue was discovered in the /admin/teachers.php file of the KASHIPARA E-learning Management System Project. The firstname and lastname parameters are...

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara Inc. A security vulnerability exists in Kashipara E-learning Management System version 1.0 that stems from vulnerability to a stored cross-site scripting attack, which allows remote attackers to execute arbitrar...

Kashipara E-learning Management System 跨站脚本漏洞

Kashipara E-learning Management System is a learning management system from Kashipara Inc. A cross-site scripting vulnerability exists in Kashipara E-learning Management System version 1.0, which is rooted in a stored cross-site scripting attack that allows remote attackers to execute arbitrary...

PT-2024-34434 · Unknown · Kashipara E-Learning Management System Project

Name of the Vulnerable Software and Affected Versions: KASHIPARA E-learning Management System Project version 1.0 Description: A Stored Cross-Site Scripting XSS issue was discovered in the /admin/teachers.php endpoint, allowing remote attackers to execute arbitrary scripts via the firstname and...

SourceCodester Best House Rental Management System 安全漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A security vulnerability exists in SourceCodester Best House Rental Management System version 1.0, which is caused by an SQL injection in the parameters firstname/lastname/email...

SourceCodester Best House Rental Management System SQL注入漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester. A SQL injection vulnerability exists in SourceCodester Best House Rental Management System version 1.0, which is caused by SQL injection of the parameters firstname/lastname/email...

PT-2024-25754 · Unknown · Computer Laboratory Management System

Name of the Vulnerable Software and Affected Versions: Computer Laboratory Management System version 1.0 Description: The issue concerns a Cross Site Scripting vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the firstname, middlename, lastname parameters in th...

CVE-2024-3541

A vulnerability classified as problematic has been found in Campcodes Church Management System 1.0. This affects an unknown part of the file /admin/adminuser.php. The manipulation of the argument firstname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

Church Management System 跨站脚本漏洞

Church Management System is a church management system. A cross-site scripting vulnerability exists in version 1.0 of the Church Management System, which stems from a cross-site scripting vulnerability in the firstname parameter of the /admin/adminuser.php file...

Church Management System SQL注入漏洞

Church Management System is a church management system. A SQL injection vulnerability exists in version 1.0 of the Church Management System, which originates from an SQL injection vulnerability in the firstname parameter of the /admin/adminuser.php file...

PT-2024-26484 · Unknown · Campcodes Church Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Church Management System version 1.0 Description: A problematic vulnerability has been found in the system, affecting an unknown part of the file /admin/admin user.php. The manipulation of the firstname argument leads to cross-site...

CVE-2024-24050

Cross Site Scripting XSS vulnerability in Sourcecodester Workout Journal App 1.0 allows attackers to run arbitrary code via parameters firstname and lastname in /add-user.php...

CVE-2024-24050

Cross Site Scripting XSS vulnerability in Sourcecodester Workout Journal App 1.0 allows attackers to run arbitrary code via parameters firstname and lastname in /add-user.php...

CVE-2023-40275

An issue was discovered in OpenClinic GA 5.247.01. It allows retrieval of patient lists via queries such as findFirstname= to common/search/searchByAjax/patientslistShow.jsp...