Lucene search
K

234 matches found

CVE
CVE
added 2023/06/23 10:0 a.m.43 views

CVE-2023-3383

CVE-2023-3383 affects SourceCodester Game Result Matrix System 1.0. The vulnerability is in the GET Parameter Handler for /dipam/athlete-profile.php, where manipulation of the id argument leads to SQL injection. It can be exploited remotely and the exploit has been disclosed publicly. Multiple so...

9.8CVSS8.3AI score0.00756EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/06/23 10:0 a.m.25 views

CVE-2023-3383 SourceCodester Game Result Matrix System GET Parameter athlete-profile.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Game Result Matrix System 1.0. This affects an unknown part of the file /dipam/athlete-profile.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to...

6.5CVSS9.9AI score0.00756EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/06/23 10:0 a.m.19 views

CVE-2023-3382 SourceCodester Game Result Matrix System GET Parameter save-delegates.php cross site scripting

A vulnerability, which was classified as problematic, has been found in SourceCodester Game Result Matrix System 1.0. Affected by this issue is some unknown functionality of the file /dipam/save-delegates.php of the component GET Parameter Handler. The manipulation of the argument delname leads t...

4CVSS6.2AI score0.00567EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/06/23 9:31 a.m.7 views

CVE-2023-3381 SourceCodester Online School Fees System GET Parameter datatable.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site...

4CVSS6.2AI score0.00557EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.3 views

PT-2023-24507 · Sourcecodester · Sourcecodester Game Result Matrix System

Name of the Vulnerable Software and Affected Versions: SourceCodester Game Result Matrix System version 1.0 Description: A problematic issue has been found in the system, affecting some unknown functionality of the file /dipam/save-delegates.php, specifically the GET Parameter Handler component...

6.1CVSS4.2AI score0.00567EPSS
Exploits1References4
NVD
NVD
added 2023/06/20 4:15 p.m.14 views

CVE-2023-3340

A vulnerability was found in SourceCodester Online School Fees System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file ajx.php of the component GET Parameter Handler. The manipulation of the argument namestartsWith leads to sql injection. The attack...

9.8CVSS7.3AI score0.00841EPSS
Exploits1References3
Prion
Prion
added 2023/06/20 4:15 p.m.13 views

Sql injection

A vulnerability was found in SourceCodester Online School Fees System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file ajx.php of the component GET Parameter Handler. The manipulation of the argument namestartsWith leads to sql injection. The attack...

6.5CVSS9.6AI score0.00841EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/06/06 2:15 a.m.14 views

CVE-2017-20185

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Fuzzy SWMP. It has been rated as problematic. This issue affects some unknown processing of the file swmp.php of the component GET Parameter Handler. The manipulation of the argument theme leads to cross site scripting. The attack may be...

6.1CVSS6.4AI score
Exploits0References4
Prion
Prion
added 2023/06/06 2:15 a.m.12 views

Cross site scripting

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Fuzzy SWMP. It has been rated as problematic. This issue affects some unknown processing of the file swmp.php of the component GET Parameter Handler. The manipulation of the argument theme leads to cross site scripting. The attack may be...

5.8CVSS6AI score0.0047EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/06/06 2:0 a.m.18 views

CVE-2017-20185 Fuzzy SWMP GET Parameter swmp.php cross site scripting

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Fuzzy SWMP. It has been rated as problematic. This issue affects some unknown processing of the file swmp.php of the component GET Parameter Handler. The manipulation of the argument theme leads to cross site scripting. The attack may be...

4CVSS6AI score0.0047EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.5 views

PT-2023-10636 · Unknown · Fuzzy Swmp

Name of the Vulnerable Software and Affected Versions: Fuzzy SWMP affected versions not specified Description: A problematic issue affects the processing of the file swmp.php in the component GET Parameter Handler. The manipulation of the theme argument leads to cross-site scripting. The attack c...

6.1CVSS6.5AI score0.0047EPSS
Exploits0References8
Prion
Prion
added 2023/05/31 9:15 a.m.19 views

Sql injection

A vulnerability classified as critical was found in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file manageprices.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...

6.5CVSS9.7AI score0.00834EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/05/31 8:31 a.m.26 views

CVE-2023-3003 SourceCodester Train Station Ticketing System GET Parameter manage_prices.php sql injection

A vulnerability classified as critical was found in SourceCodester Train Station Ticketing System 1.0. Affected by this vulnerability is an unknown functionality of the file manageprices.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...

6.5CVSS10AI score0.00834EPSS
Exploits1References3
Prion
Prion
added 2023/05/29 7:15 a.m.15 views

Sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Students Online Internship Timesheet System 1.0. Affected is an unknown function of the file renderedreport.php of the component GET Parameter Handler. The manipulation of the argument sid leads to sql injection. It is...

6.5CVSS9.8AI score0.00779EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/05/29 7:0 a.m.27 views

CVE-2023-2955 SourceCodester Students Online Internship Timesheet System GET Parameter rendered_report.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Students Online Internship Timesheet System 1.0. Affected is an unknown function of the file renderedreport.php of the component GET Parameter Handler. The manipulation of the argument sid leads to sql injection. It is...

6.5CVSS10AI score0.00779EPSS
Exploits1References3
Prion
Prion
added 2023/05/27 8:15 a.m.19 views

Cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...

4CVSS6.1AI score0.00557EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/27 7:31 a.m.8 views

CVE-2023-2922 SourceCodester Comment System GET Parameter index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...

4CVSS6.2AI score0.00557EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/05/27 7:31 a.m.28 views

CVE-2023-2922 SourceCodester Comment System GET Parameter index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...

4CVSS6.2AI score0.00557EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/05/27 12:0 a.m.6 views

PT-2023-22212 · Unknown · Sourcecodester Comment System

Name of the Vulnerable Software and Affected Versions: SourceCodester Comment System version 1.0 Description: A problematic vulnerability has been found in the SourceCodester Comment System. The issue affects an unknown function of the file index.php, specifically the component GET Parameter...

6.1CVSS6.6AI score0.00557EPSS
Exploits1References6
NVD
NVD
added 2023/05/24 11:15 a.m.20 views

CVE-2023-2865

A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file printticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate...

9.8CVSS7.4AI score0.00726EPSS
Exploits1References3
Rows per page
Query Builder