CVE-2023-46003

I-doit pro 25 and below is vulnerable to Cross Site Scripting XSS via index.php...

CVE-2023-46003

I-doit pro 25 and below is vulnerable to Cross Site Scripting XSS via index.php...

I-doit pro Cross-Site Scripting Vulnerability

i-doit is a configuration management database software from i-doit Inc. A security vulnerability exists in I-doit pro 25 and prior versions that stems from vulnerability to cross-site scripting XSS attacks via index.php...

CVE-2023-46003

CVE-2023-46003 affects i-doit pro 25 and below, with a Cross-Site Scripting (XSS) vulnerability exploitable via the index.php endpoint. Available sources consistently state the issue but do not provide exploit details. Potential remediation notes from a PT Security advisory suggest deprioritizing...

Medicine Tracker System Cross-Site Scripting Vulnerability

Medicine Tracker System is a medication tracking system by Carlo Montero personal developer. Medicine Tracker System v1.0 suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter page of the file index.ph...

CVE-2023-5581

A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...

Cross site scripting

A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...

CVE-2023-5581 SourceCodester Medicine Tracker System index.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...

CVE-2023-5581

CVE-2023-5581 affects SourceCodester Medicine Tracker System 1.0. The vulnerability is an XSS flaw in the index.php file triggered by manipulating the page parameter. Exploitation can be performed remotely, and the exploit has been disclosed publicly. Multiple sources identify the issue but do no...

Sql injection

A vulnerability, which was classified as critical, was found in codeprojects Farmacia 1.0. Affected is an unknown function of the file index.php. The manipulation of the argument usario/senha leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to t...

CVE-2023-5471

Affected software: codeprojects Farmacia 1.0. The vulnerability is in an unknown function of index.php where the usario/senha parameter is manipulated to cause SQL injection. The issue can be exploited remotely and exploitation details have been disclosed. The available documents do not specify a...

Farmacia SQL Injection Vulnerability

Farmacia is a CMS. Farmacia version 1.0 suffers from a SQL injection vulnerability that stems from the parameter usario/senha in the file index.php that causes sql injection...

CVE-2023-43944

A Stored Cross Site Scripting XSS vulnerability was found in SourceCodester Task Management System 1.0. It allows attackers to execute arbitrary code via parameter field in index.php?page=projectlist...

CVE-2023-43944

A Stored Cross Site Scripting XSS vulnerability was found in SourceCodester Task Management System 1.0. It allows attackers to execute arbitrary code via parameter field in index.php?page=projectlist...

CVE-2023-43013 Asset Management System v1.0 - Unauthenticated SQL Injection (SQLi)

Asset Management System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the 'email' parameter of index.php page, allowing an external attacker to dump all the contents of the database contents and bypass the login control...

CVE-2023-44276

OPNsense before 23.7.5 allows XSS via the index.php sequence parameter to the Lobby Dashboard...

CVE-2023-44275

OPNsense before 23.7.5 allows XSS via the index.php columncount parameter to the Lobby Dashboard...

CVE-2023-44276

OPNsense before 23.7.5 allows XSS via the index.php sequence parameter to the Lobby Dashboard...

CVE-2023-44276

OPNsense before 23.7.5 allows XSS via the index.php sequence parameter to the Lobby Dashboard...

CVE-2023-41446

Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script to the title parameter in the index.php component...