61 matches found
CVE-2024-40070
Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via idgenerator/classes/Users.php?f=save. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...
SourceCodester Online ID Generator System 安全漏洞
SourceCodester Online ID Generator System is an open source online identity generator system from SourceCodester. A security vulnerability exists in SourceCodester Online ID Generator System version 1.0, which stems from a stored cross-site scripting attack due to incorrect manipulation of the...
Sourcecodester Online ID Generator System 安全漏洞
Sourcecodester Online ID Generator System is an online identity generator system from SourceCodester open source. A security vulnerability exists in version 1.0 of the Sourcecodester Online ID Generator System, which stems from allowing the upload of arbitrary files and could lead to the executio...
CVE-2024-40072
Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at idgenerator/admin/?page=generate/index&id=1...
PT-2025-16793 · Unknown · Sourcecodester Online Id Generator System
Name of the Vulnerable Software and Affected Versions: Sourcecodester Online ID Generator System version 1.0 Description: The issue allows attackers to execute arbitrary code via a crafted PHP file, exploiting an arbitrary file upload vulnerability. This is achievable through the id...
CVE-2024-40074
Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting XSS via idgenerator/classes/SystemSettings.php?f=updatesettings, and the point of vulnerability is in the POST parameter 'shortname'...
SourceCodester Online ID Generator System 安全漏洞
SourceCodester Online ID Generator System is an online identity generator system from SourceCodester open source. A security vulnerability exists in SourceCodester Online ID Generator System version 1.0, which originates from a SQL injection due to incorrect manipulation of the parameter template...
CVE-2024-40068
Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at idgenerator/admin/?page=templates/managetemplate&id=1...
PT-2025-16787 · Sourcecodester · Sourcecodester Online Id Generator System
Name of the Vulnerable Software and Affected Versions: Sourcecodester Online ID Generator System version 1.0 Description: The issue allows attackers to execute arbitrary code via a crafted PHP file, exploiting an arbitrary file upload vulnerability. This is achieved through the id...
CVE-2024-40071
Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via idgenerator/classes/SystemSettings.php?f=updatesettings. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2024-40071
CVE-2024-40071 affects Sourcecodester Online ID Generator System 1.0. The vulnerability is an arbitrary file upload via id_generator/classes/SystemSettings.php?f=update_settings that allows execution of arbitrary PHP code. CVSS 3.1 metrics indicate NETWORK/vector, HIGH impact on confidentiality, ...
CVE-2024-40070
CVE-2024-40070 affects Sourcecodester Online ID Generator System 1.0. The issue is an arbitrary file upload vulnerability at id_generator/classes/Users.php?f=save that allows an attacker to execute arbitrary PHP code by uploading a crafted file. The connected documents provide concrete details ab...
CVE-2024-40073
SourceCodester Online ID Generator System 1.0 is affected by a SQL injection vulnerability in the template parameter of id_generator/admin/?page=generate&template=4. The root cause is improper input handling leading to injection, exposing high-risk impact on confidentiality, integrity, and availa...
CVE-2024-40074
CVE-2024-40074 affects SourceCodester Online ID Generator System 1.0. The flaw is a Stored Cross-Site Scripting (XSS) vulnerability in id_generator/classes/SystemSettings.php?f=update_settings, with the point of vulnerability in the POST parameter short_name. CVSSv3.1 base score 4.8 (MEDIUM), net...
CVE-2024-40068
Sourcecodester Online ID Generator System 1.0 contains a SQL injection in the id parameter of id_generator/admin/?page=templates/manage_template&id=1. Root cause: improper handling of user input leading to SQL injection. Impact per available metrics is Confidentiality/Integrity/Availability Low w...
CVE-2024-40072
CVE-2024-40072 affects Sourcecodester Online ID Generator System 1.0. It contains a SQL injection vulnerability in the id parameter (id_generator/admin/?page=generate/index&id=1). The CVE entry lists a base score of 9.8 (CRITICAL) with NETWORK attack vector, no privileges required, and no user in...
CVE-2024-40069
Sourcecodester Online ID Generator System 1.0 is affected by a Stored Cross-Site Scripting (XSS) flaw in id_generator/classes/Users.php?f=save, triggered by the POST parameters firstname and lastname. Root cause is unescaped user input leading to script execution in the context of authenticated/u...
Online ID Generator 1.0 - Remote Code Execution Vulnerability
Title: Online ID Generator 1.0 - Remote Code Execution RCE Author: nu11secur1ty Vendor: https://www.youtube.com/watch?v=JdB9po5DTc Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/idgenerator0.zip Reference: https://portswigger.net/web-security/sql-injection...
Online ID Generator 1.0 - Remote Code Execution (RCE)
Title: Online ID Generator 1.0 - Remote Code Execution RCE Author: nu11secur1ty Date: 08/31/2023 Vendor: https://www.youtube.com/watch?v=JdB9po5DTc Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/idgenerator0.zip Reference:...
Online ID Generator 1.0 SQL Injection / Shell Upload
Title: Online-ID-Generator-1.0-SQLi-Bypass-login-ShellUpload-RCE Author: nu11secur1ty Date: 08/31/2023 Vendor: https://www.youtube.com/watch?v=JdB9po5DTc Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/idgenerator0.zip Reference:...