Lucene search
K

846 matches found

OSV
OSV
added 2024/08/31 6:15 p.m.5 views

CVE-2024-8366

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?id=userProfileEdit of the component Update My Profile Page. The manipulation of the argument fname/lname/email with the input alert...

4.7CVSS3.8AI score0.00501EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/08/30 12:0 a.m.1 views

Sweet-CMS SQL注入漏洞

Sweet-CMS is a high performance backend management system built on a powerful technology stack of Gin, GORM, Redis, Casbin, Viper, etc. by master-nan individual developer. Sweet-CMS 5f441e022b8876f07cde709c77b5be6d2f262e3f and prior versions suffer from a SQL injection vulnerability that originat...

9.8CVSS7AI score0.00613EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/08/27 12:0 a.m.5 views

PT-2024-38877 · Unknown · Code-Projects Online Quiz Site

Name of the Vulnerable Software and Affected Versions: code-projects Online Quiz Site version 1.0 Description: A critical issue affects the processing of the file index.php, where the manipulation of the loginid argument leads to SQL injection. The attack can be initiated remotely. The exploit ha...

9.8CVSS8AI score0.00646EPSS
Exploits1References12
OSV
OSV
added 2024/08/06 11:16 a.m.0 views

CVE-2024-33978

Cross-Site Scripting XSS vulnerability in E-Negosyo System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain their session cookie details via 'category' parameter in '/index.php'...

6.1CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2024/08/06 2:15 a.m.3 views

CVE-2024-7496

A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack can be initiated remotely. The exploit has been...

8.8CVSS5.5AI score0.0065EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/08/06 12:0 a.m.3 views

PT-2024-38386 · Unknown · Airline Reservation System

Name of the Vulnerable Software and Affected Versions: Airline Reservation System version 1.0 Description: A critical issue has been found in the Airline Reservation System, affecting the /index.php file. The manipulation of the page argument leads to file inclusion. This issue can be exploited...

8.8CVSS7AI score0.0065EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/08/06 12:0 a.m.5 views

PayPal,Credit Card and Debit Card Payment 跨站脚本漏洞

PayPal,Credit Card and Debit Card Payment is a PayPal, Credit Card and Debit Card Payment software by janobe Personal Developer. A cross-site scripting vulnerability exists in PayPal,Credit Card and Debit Card Payment version 1.0. An attacker can create a specially crafted URL and send it to the...

7.1CVSS6.1AI score0.00267EPSS
Exploits0References2
OSV
OSV
added 2024/07/28 5:15 p.m.2 views

CVE-2024-7163

A vulnerability, which was classified as problematic, was found in SeaCMS 12.9. This affects an unknown part of the file /js/player/dmplayer/player/index.php. The manipulation of the argument color/vid/url leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

6.1CVSS3.8AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/07/27 12:0 a.m.3 views

PT-2024-37729 · WordPress · Intelligence Plugin

Name of the Vulnerable Software and Affected Versions: Intelligence plugin for WordPress versions up to, and including, 1.4.0 Description: The issue allows unauthenticated attackers to retrieve the full path of the web application, which can aid other attacks. This is due to the plugin not...

5.3CVSS6.8AI score0.00439EPSS
Exploits0References5
OSV
OSV
added 2024/07/19 4:15 a.m.2 views

CVE-2024-6898

A vulnerability was found in SourceCodester Record Management System 1.0. It has been classified as critical. This affects an unknown part of the file index.php. The manipulation of the argument UserName leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS6.8AI score0.00604EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/07/19 12:0 a.m.4 views

PT-2024-37939 · Unknown · Sourcecodester Record Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Record Management System version 1.0 Description: A critical issue has been found, affecting an unknown part of the file index.php. The manipulation of the UserName argument leads to sql injection. It is possible to initiate th...

9.8CVSS7.5AI score0.00604EPSS
Exploits1References8
VulnCheck KEV
VulnCheck KEV
added 2024/07/15 12:0 a.m.2 views

VulnCheck KEV: CVE-2021-44892

A Remote Code Execution RCE vulnerability exists in ThinkPHP 3.x.x via valuefilename in index.php, which could let a malicious user obtain server control privileges...

8.8CVSS5.9AI score0.01893EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/07/03 12:0 a.m.4 views

playSMS Injection Vulnerability

playSMS is an open source SMS Short Message Service management software from Anton Raharja, an individual developer in India. An injection vulnerability exists in playSMS version 1.4.3, which stems from an issue in the /index.php?app=main&inc=featurefirewall&op=firewalllist file of the Template...

8.8CVSS7.3AI score0.00736EPSS
Exploits1References4
OSV
OSV
added 2024/06/25 5:15 p.m.4 views

CVE-2024-6308

A vulnerability was found in itsourcecode Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi...

9.8CVSS6.8AI score0.00682EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/06/25 12:0 a.m.4 views

Simple Online Hotel Reservation System Security Vulnerability

Simple Online Hotel Reservation System is an online hotel reservation system. A security vulnerability exists in Simple Online Hotel Reservation System version 1.0, which originates from a parameter username in the file index.php that can lead to SQL injection...

9.8CVSS7.4AI score0.00682EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.4 views

CodeProjects Restaurant Reservation System Cross-Site Scripting Vulnerability

CodeProjects Restaurant Reservation System is a Php based restaurant reservation system. A cross-site scripting vulnerability exists in CodeProjects Restaurant Reservation System v1.0, which originates from a cross-site scripting vulnerability in the Date parameter of index.php...

6.1CVSS6.2AI score0.00349EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.2 views

Pool of Bethesda Online Reservation System SQL Injection Vulnerability

Pool of Bethesda Online Reservation System is a swimming pool online reservation system by janobe individual developer. A SQL injection vulnerability exists in Pool of Bethesda Online Reservation System version 1.0, which stems from a parameter logemail in the file index.php that can lead to SQL...

9.8CVSS7.9AI score0.00646EPSS
Exploits1References5
OSV
OSV
added 2024/06/17 9:15 p.m.1 views

CVE-2024-6065

A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument useremail leads to sql injection. The attack may be initiated remotely. The exploit has be...

9.8CVSS5.7AI score0.00646EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/06/17 12:0 a.m.4 views

PT-2024-37359 · Itsourcecode · Itsourcecode Bakery Online Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Bakery Online Ordering System version 1.0 Description: A critical issue affects the processing of the file index.php, where the manipulation of the user email argument leads to sql injection. The attack can be initiated remotely...

9.8CVSS7.5AI score0.00646EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/06/09 12:0 a.m.4 views

PT-2024-37140 · Unknown · Sourcecodester Stock Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Stock Management System version 1.0 Description: A critical vulnerability has been found in the SourceCodester Stock Management System, affecting an unknown functionality of the file index.php of the component Login. The...

9.8CVSS7.8AI score0.00656EPSS
Exploits1References10
Rows per page
Query Builder