CVE-2024-9326 PHPGurukul Online Shopping Portal Admin Panel index.php sql injection

A vulnerability classified as critical was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /shopping/admin/index.php of the component Admin Panel. The manipulation of the argument username leads to sql injection. The attack can be initiated...

CVE-2024-9091 code-projects Student Record System index.php sql injection

A vulnerability was found in code-projects Student Record System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument regno leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2024-9091 code-projects Student Record System index.php sql injection

A vulnerability was found in code-projects Student Record System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument regno leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2024-9085

A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument date leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-9085 code-projects Restaurant Reservation System index.php sql injection

A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument date leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-9085

The CVE-2024-9085 issue affects code-projects Restaurant Reservation System 1.0, where the date parameter in index.php enables SQL injection. The vulnerability can be triggered remotely by an unauthenticated attacker and, per PT-2024-39419, may allow unauthenticated remote code execution. Exploit...

CVE-2024-9085 code-projects Restaurant Reservation System index.php sql injection

A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument date leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-9037 Codezips Internal Marks Calculation index.php sql injection

A vulnerability classified as critical has been found in Codezips Internal Marks Calculation 1.0. Affected is an unknown function of the file index.php. The manipulation of the argument tid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2024-9032 SourceCodester Simple Forum-Discussion System index.php path traversal

A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...

Simple Forum-Discussion System 路径遍历漏洞

Simple Forum-Discussion System is a simple forum/discussion system. A path traversal vulnerability exists in version 1.0 of the Simple Forum-Discussion System due to a path traversal vulnerability in the page parameter of the /index.php file...

Webpay E-Commerce 1.0 Cross Site Scripting

============================================================================================================================================= | Title : Webpay E-Commerce v1.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...

CVE-2024-44871

An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows attackers to execute arbitrary code via uploading a crafted file...

PT-2024-31290 · Mozilocms · Mozilocms

Name of the Vulnerable Software and Affected Versions: moziloCMS version 3.0 Description: An arbitrary file upload issue in the /admin/index.php component allows attackers to execute arbitrary code by uploading a crafted file. Recommendations: For moziloCMS version 3.0, consider restricting acces...

CVE-2024-8610 SourceCodester Best House Rental Management System New Tenant Page index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the component New Tenant Page. The manipulation of the argument Last Name/First Name/Middle Name leads to cros...

CVE-2024-8604 SourceCodester Online Food Ordering System Create an Account Page index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. This affects an unknown part of the file index.php of the component Create an Account Page. The manipulation of the argument First Name/Last Name leads to cross site scripting. It is possib...

PT-2024-38995 · Bioshox · Raspcontrol

Name of the Vulnerable Software and Affected Versions: Raspcontrol version 1.0 Description: A Cross Site Scripting XSS issue exists through the action parameter in index.php. This allows an attacker to send a specially crafted JavaScript payload to an authenticated user, potentially hijacking the...

CVE-2024-44921

SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del...

CVE-2024-44921

SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del...

CVE-2024-8368 code-projects Hospital Management System Login index.php sql injection

A vulnerability was found in code-projects Hospital Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...

CVE-2024-8368 code-projects Hospital Management System Login index.php sql injection

A vulnerability was found in code-projects Hospital Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...