846 matches found
PT-2024-17498 · Unknown · Codezips Project Management System
Name of the Vulnerable Software and Affected Versions: CodeZips Project Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown part of the file /index.php. The manipulation of the email argument leads to SQL injection. It is possible to initiate...
PHPGurukul Complaint Management System 注入漏洞
PHPGurukul Complaint Management System is a complaint management system from PHPGurukul. An injection vulnerability exists in version 1.0 of the PHPGurukul Complaint Management System, which originates in the /admin/index.php file, where the parameter username is subject to SQL master injection...
CVE-2024-32468 Improper neutralization of input during web page generation ("Cross-site Scripting") in deno_doc HTML generator
Deno is a runtime for JavaScript and TypeScript written in rust. Several cross-site scripting vulnerabilities existed in the denodoc crate which lead to Self-XSS with deno doc --html. 1. XSS in generated searchindex.js, denodoc outputs a JavaScript file for searching. However, the generated file...
CVE-2024-11490
A vulnerability was found in 115cms up to 20240807. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php/admin/web/set.html. The manipulation of the argument type leads to cross site scripting. The attack can be launched remotely...
1000 Projects Beauty Parlour Management System 注入漏洞
1000 Projects Beauty Parlour Management System is an open source beauty parlor management system from 1000 Projects. An injection vulnerability exists in 1000 Projects Beauty Parlour Management System version 1.0, which stems from the parameter username in the file /admin/index.php that can cause...
PT-2024-16866 · Unknown · 1000 Projects Beauty Parlour Management System
Name of the Vulnerable Software and Affected Versions: 1000 Projects Beauty Parlour Management System version 1.0 Description: A critical issue was found in the 1000 Projects Beauty Parlour Management System. The manipulation of the username argument leads to SQL injection in the file...
CVE-2024-11100
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely...
CVE-2024-11077
A vulnerability, which was classified as critical, was found in code-projects Job Recruitment 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to...
CVE-2024-10758
A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack...
Vehicle Record Management System /index.php File SQL Injection Vulnerability
Vehicle Record Management System is a vehicle record management system. Vehicle Record Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the searchinputdata parameter of the /index.php file. An attacker...
CVE-2024-51060
Projectworlds Online Admission System v1 is vulnerable to SQL Injection in index.php via the 'aid' parameter...
PT-2024-34508 · Unknown · Projectworlds Online Admission System
Name of the Vulnerable Software and Affected Versions: Projectworlds Online Admission System version v1 Description: The issue is related to SQL Injection in the index.php file via the a id parameter. This allows for potential exploitation. No information is provided about the estimated number of...
CVE-2024-10432
A vulnerability has been found in Project Worlds Simple Web-Based Chat Application 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument username leads to sql injection. The attack can be launched...
CVE-2024-10433
A vulnerability was found in Project Worlds Simple Web-Based Chat Application 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument Name/Comment leads to cross site scripting. The attack may be launched...
SourceCodeHero Clothes Recommendation System SQL注入漏洞
SourceCodeHero Clothes Recommendation System is a SourceCodeHero open source clothing recommendation system. SourceCodeHero Clothes Recommendation System version 1.0 suffers from a SQL injection vulnerability, which originates from the parameter t1 in the file /admin/index.php of the component...
PT-2024-39425 · Unknown · Code-Projects Student Record System
Name of the Vulnerable Software and Affected Versions: code-projects Student Record System version 1.0 Description: A critical vulnerability was found in the code-projects Student Record System. The issue affects an unknown functionality of the file /index.php. The manipulation of the regno...
CVE-2024-9037
A vulnerability classified as critical has been found in Codezips Internal Marks Calculation 1.0. Affected is an unknown function of the file index.php. The manipulation of the argument tid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
PT-2024-39376 · Unknown · Sourcecodester Simple Forum-Discussion System
Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Forum-Discussion System version 1.0 Description: A critical vulnerability was found in the SourceCodester Simple Forum-Discussion System. The issue affects an unknown function of the file /index.php. The manipulation of...
CVE-2024-8582
A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument description leads to cross site scripting. The attack may be launched...
Code-Projects Hospital Management System SQL注入漏洞
Code-Projects Hospital Management System is a Code-Projects open source hospital management system. Code-Projects Hospital Management System version 1.0 suffers from a SQL injection vulnerability, which originates from a SQL injection vulnerability contained in the index.php page...