846 matches found
Monstra CMS Security Vulnerability
Monstra CMS is a lightweight PHP-based content management system CMS by Sergey Romanenko, an individual developer in Ukraine. A security vulnerability exists in Monstra CMS version v3.0.4. The vulnerability is exploited by attackers to execute arbitrary web script or HTML via a specially crafted...
CVE-2024-34987
A SQL Injection vulnerability exists in the ofrs/admin/index.php script of PHPGurukul Online Fire Reporting System 1.2. The vulnerability allows attackers to bypass authentication and gain unauthorized access by injecting SQL commands into the username input field during the login process...
PT-2024-35945 · Sourcecodester · Sourcecodester Facebook News Feed Like
Name of the Vulnerable Software and Affected Versions: SourceCodester Facebook News Feed Like version 1.0 Description: A critical issue was found in the software, affecting the file index.php. The manipulation of the page argument leads to SQL injection. The attack can be initiated remotely...
PT-2024-34603 · Unknown · Phpgurukul Directory Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Directory Management System version 1.0 Description: A critical issue affects the processing of the file /admin/index.php, where the manipulation of the username argument leads to SQL injection. The attack can be initiated remotely...
CVE-2024-5063
A vulnerability was found in PHPGurukul Online Course Registration System 3.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...
CVE-2024-5048
A vulnerability classified as critical was found in code-projects Budget Management 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument edit leads to sql injection. The attack can be launched remotely. The exploit has been...
CVE-2024-4722
A vulnerability classified as problematic was found in Campcodes Complete Web-Based School Management System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument category leads to cross site scripting. The attack can be initiated remotely. The explo...
PT-2024-32483 · Campcodes · Campcodes Complete Web-Based School Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A problematic issue was found in the software, affecting the index.php file. The manipulation of the category argument leads to cross-site scripting. This issue ca...
campcodes Complete Web-Based School Management System 安全漏洞
Campcodes Complete Web-Based School Management System is a web-based school management system from Campcodes, Inc. A security vulnerability exists in version 1.0 of the campcodes Complete Web-Based School Management System due to an SQL injection vulnerability in the name parameter of the index.p...
CmsEasy 安全漏洞
CmsEasy is a content management system CMS for creating responsive websites from China's Jiuzhou ET Technology CmsEasy. A security vulnerability exists in CmsEasy v.7.7 and prior versions, which originated from allowing remote attackers to obtain sensitive information via the update function in t...
PT-2024-26448 · Unknown · Campcodes Church Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Church Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown part of the file /admin/index.php. The manipulation of the password argument leads to SQL injection. It is possible to...
PT-2024-26409 · Unknown · Campcodes Online Event Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Online Event Management System version 1.0 Description: A problematic issue was found in the system, affecting an unknown function of the file /views/index.php. The manipulation of the msg argument leads to cross-site scripting. It ...
PT-2024-26394 · Unknown · Campcodes Online Event Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Online Event Management System version 1.0 Description: A critical vulnerability was found in the system, affecting unknown code in the file /views/index.php. The manipulation of the ID argument leads to SQL injection. The attack ca...
PT-2024-25348 · Sourcecodester · Aplaya Beach Resort Online Reservation System
Name of the Vulnerable Software and Affected Versions: SourceCodester Aplaya Beach Resort Online Reservation System version 1.0 Description: A problematic vulnerability was found in the system, affecting unknown code of the file /index.php. The manipulation of the argument leads to cross site...
The vulnerabilities of the LoadIndexFile() and DownloadIndexFile() functions in the repo package, as well as the LoadDir() function in the plugin package of the Kubernetes Helm package manager, allow a malicious actor to cause service interruptions.
The vulnerability of the LoadIndexFile and DownloadIndexFile functions in the repo package, as well as the LoadDir function in the plugin package of the Kubernetes Helm package manager, is related to the use of uninitialized variables during the processing of index.yaml and plugin.yaml files...
WUZHI CMS 安全漏洞
WUZHI CMS is an open source content management system CMS based on PHP and MySQL by Five Fingers WUZHI. A security vulnerability exists in WUZHI CMS version 4.1.0, which originated from allowing an attacker to execute arbitrary code and obtain sensitive information via the index.php file...
PHPGurukul Men Salon Management System 安全漏洞
PHPGurukul Men Salon Management System is a men's salon management system from PHPGurukul, Inc. A security vulnerability exists in version v.2.0 of the PHPGurukul Men Salon Management System, which is caused by a SQL injection vulnerability in the email parameter of the index.php component...
PT-2024-23720 · Wuzhicms · Wuzhi Cms
Name of the Vulnerable Software and Affected Versions: WUZHICMS version 4.1.0 Description: An issue was discovered in WUZHICMS, allowing an attacker to execute arbitrary code and obtain sensitive information via the "index.php" file. Recommendations: For WUZHICMS version 4.1.0, consider disabling...
NetentSec NS-ASG 安全漏洞
NetentSec NS-ASG is an application security gateway from China NetentSec. A security vulnerability exists in NetentSec NS-ASG version 6.3, which originates from an SQL injection vulnerability in the /3g/index.php file...
Campcodes Complete Online Beauty Parlor Management System SQL注入漏洞
Campcodes Complete Online Beauty Parlor Management System is an online beauty parlor management system from Campcodes, Inc. A SQL injection vulnerability exists in Campcodes Complete Online Beauty Parlor Management System version 1.0, which originates from an SQL injection vulnerability in the...