Lucene search
K

61 matches found

cvelist
cvelist
added 2025/04/16 12:0 a.m.13 views

CVE-2024-40070

Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via idgenerator/classes/Users.php?f=save. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...

0.00233EPSS
Exploits1References1
cnnvd
cnnvd
added 2025/04/16 12:0 a.m.3 views

SourceCodester Online ID Generator System 安全漏洞

SourceCodester Online ID Generator System is an open source online identity generator system from SourceCodester. A security vulnerability exists in SourceCodester Online ID Generator System version 1.0, which stems from a stored cross-site scripting attack due to incorrect manipulation of the...

5.4CVSS6AI score0.00238EPSS
Exploits1References2
cnnvd
cnnvd
added 2025/04/16 12:0 a.m.5 views

Sourcecodester Online ID Generator System 安全漏洞

Sourcecodester Online ID Generator System is an online identity generator system from SourceCodester open source. A security vulnerability exists in version 1.0 of the Sourcecodester Online ID Generator System, which stems from allowing the upload of arbitrary files and could lead to the executio...

9.8CVSS7.1AI score0.00663EPSS
Exploits1References2
cvelist
cvelist
added 2025/04/16 12:0 a.m.15 views

CVE-2024-40072

Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at idgenerator/admin/?page=generate/index&id=1...

0.00443EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2025/04/16 12:0 a.m.5 views

PT-2025-16793 · Unknown · Sourcecodester Online Id Generator System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Online ID Generator System version 1.0 Description: The issue allows attackers to execute arbitrary code via a crafted PHP file, exploiting an arbitrary file upload vulnerability. This is achievable through the id...

9.8CVSS7.3AI score0.00663EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2025/04/16 12:0 a.m.10 views

CVE-2024-40074

Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting XSS via idgenerator/classes/SystemSettings.php?f=updatesettings, and the point of vulnerability is in the POST parameter 'shortname'...

6.5AI score0.00239EPSS
Exploits1References1
cnnvd
cnnvd
added 2025/04/16 12:0 a.m.5 views

SourceCodester Online ID Generator System 安全漏洞

SourceCodester Online ID Generator System is an online identity generator system from SourceCodester open source. A security vulnerability exists in SourceCodester Online ID Generator System version 1.0, which originates from a SQL injection due to incorrect manipulation of the parameter template...

9.8CVSS7.8AI score0.00443EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2025/04/16 12:0 a.m.8 views

CVE-2024-40068

Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at idgenerator/admin/?page=templates/managetemplate&id=1...

6.1AI score0.00219EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2025/04/16 12:0 a.m.7 views

PT-2025-16787 · Sourcecodester · Sourcecodester Online Id Generator System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Online ID Generator System version 1.0 Description: The issue allows attackers to execute arbitrary code via a crafted PHP file, exploiting an arbitrary file upload vulnerability. This is achieved through the id...

5.1CVSS7.9AI score0.00233EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2025/04/16 12:0 a.m.9 views

CVE-2024-40071

Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via idgenerator/classes/SystemSettings.php?f=updatesettings. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...

8.4AI score0.00663EPSS
Exploits1References1
cve
cve
added 2025/04/16 12:0 a.m.56 views

CVE-2024-40071

CVE-2024-40071 affects Sourcecodester Online ID Generator System 1.0. The vulnerability is an arbitrary file upload via id_generator/classes/SystemSettings.php?f=update_settings that allows execution of arbitrary PHP code. CVSS 3.1 metrics indicate NETWORK/vector, HIGH impact on confidentiality, ...

9.8CVSS8.3AI score0.00663EPSS
Exploits1References1Affected Software1
cve
cve
added 2025/04/16 12:0 a.m.54 views

CVE-2024-40070

CVE-2024-40070 affects Sourcecodester Online ID Generator System 1.0. The issue is an arbitrary file upload vulnerability at id_generator/classes/Users.php?f=save that allows an attacker to execute arbitrary PHP code by uploading a crafted file. The connected documents provide concrete details ab...

5.1CVSS8.3AI score0.00233EPSS
Exploits1References1Affected Software1
cve
cve
added 2025/04/16 12:0 a.m.55 views

CVE-2024-40073

SourceCodester Online ID Generator System 1.0 is affected by a SQL injection vulnerability in the template parameter of id_generator/admin/?page=generate&template=4. The root cause is improper input handling leading to injection, exposing high-risk impact on confidentiality, integrity, and availa...

9.8CVSS8.3AI score0.00443EPSS
Exploits1References1Affected Software1
cve
cve
added 2025/04/16 12:0 a.m.56 views

CVE-2024-40074

CVE-2024-40074 affects SourceCodester Online ID Generator System 1.0. The flaw is a Stored Cross-Site Scripting (XSS) vulnerability in id_generator/classes/SystemSettings.php?f=update_settings, with the point of vulnerability in the POST parameter short_name. CVSSv3.1 base score 4.8 (MEDIUM), net...

4.8CVSS6.1AI score0.00239EPSS
Exploits1References1Affected Software1
cve
cve
added 2025/04/16 12:0 a.m.50 views

CVE-2024-40068

Sourcecodester Online ID Generator System 1.0 contains a SQL injection in the id parameter of id_generator/admin/?page=templates/manage_template&id=1. Root cause: improper handling of user input leading to SQL injection. Impact per available metrics is Confidentiality/Integrity/Availability Low w...

5.9CVSS8.3AI score0.00219EPSS
Exploits1References1Affected Software1
cve
cve
added 2025/04/16 12:0 a.m.59 views

CVE-2024-40072

CVE-2024-40072 affects Sourcecodester Online ID Generator System 1.0. It contains a SQL injection vulnerability in the id parameter (id_generator/admin/?page=generate/index&id=1). The CVE entry lists a base score of 9.8 (CRITICAL) with NETWORK attack vector, no privileges required, and no user in...

9.8CVSS7.9AI score0.00443EPSS
Exploits1References1Affected Software1
cve
cve
added 2025/04/16 12:0 a.m.53 views

CVE-2024-40069

Sourcecodester Online ID Generator System 1.0 is affected by a Stored Cross-Site Scripting (XSS) flaw in id_generator/classes/Users.php?f=save, triggered by the POST parameters firstname and lastname. Root cause is unescaped user input leading to script execution in the context of authenticated/u...

5.4CVSS6.4AI score0.00238EPSS
Exploits1References1Affected Software1
zdt
zdt
added 2023/10/09 12:0 a.m.201 views

Online ID Generator 1.0 - Remote Code Execution Vulnerability

Title: Online ID Generator 1.0 - Remote Code Execution RCE Author: nu11secur1ty Vendor: https://www.youtube.com/watch?v=JdB9po5DTc Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/idgenerator0.zip Reference: https://portswigger.net/web-security/sql-injection...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2023/10/09 12:0 a.m.355 views

Online ID Generator 1.0 - Remote Code Execution (RCE)

Title: Online ID Generator 1.0 - Remote Code Execution RCE Author: nu11secur1ty Date: 08/31/2023 Vendor: https://www.youtube.com/watch?v=JdB9po5DTc Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/idgenerator0.zip Reference:...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2023/08/31 12:0 a.m.343 views

Online ID Generator 1.0 SQL Injection / Shell Upload

Title: Online-ID-Generator-1.0-SQLi-Bypass-login-ShellUpload-RCE Author: nu11secur1ty Date: 08/31/2023 Vendor: https://www.youtube.com/watch?v=JdB9po5DTc Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/idgenerator0.zip Reference:...

7.1AI score
Exploits0
Rows per page
Query Builder