Lucene search
K

167 matches found

0day.today
0day.today
added 2023/04/06 12:0 a.m.272 views

Intern Record System v1.0 - SQL Injection (Unauthenticated) Vulnerability

Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link: https://download-media.code-projects.org/2020/03/InternRecordSystemInPHPWithSourceCode.zip...

9.8CVSS9.2AI score0.05348EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.234 views

Intern Record System 1.0 SQL Injection

Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Date: 2022-06-09 Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link:...

9.8CVSS9.4AI score0.05348EPSS
Exploits5
OSV
OSV
added 2023/02/18 2:15 a.m.5 views

CVE-2022-40348

Cross Site Scripting XSS vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code...

5.4CVSS6AI score0.00799EPSS
Exploits1References3
NVD
NVD
added 2023/02/18 2:15 a.m.24 views

CVE-2022-40348

Cross Site Scripting XSS vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code...

5.4CVSS5.5AI score0.00799EPSS
Exploits1References3
Prion
Prion
added 2023/02/18 2:15 a.m.16 views

Cross site scripting

Cross Site Scripting XSS vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code...

4.9CVSS5.5AI score0.00799EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/02/18 12:0 a.m.33 views

CVE-2022-40348

Cross Site Scripting XSS vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code...

5.7AI score0.00799EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/02/18 12:0 a.m.6 views

Intern Record System 跨站脚本漏洞

Intern Record System is an intern record system from the individual developers at Codeprojects. A security vulnerability exists in Intern Record System version 1.0. An attacker can exploit this vulnerability to execute arbitrary code...

5.4CVSS6.2AI score0.00799EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/02/18 12:0 a.m.10 views

CVE-2022-40348

Cross Site Scripting XSS vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code...

5.5AI score0.00799EPSS
Exploits1References3
CVE
CVE
added 2023/02/18 12:0 a.m.52 views

CVE-2022-40348

CVE-2022-40348 affects Intern Record System v1.0, vulnerable in /intern/controller.php where the name and email fields are unsafely handled, allowing stored/reflected XSS to trigger arbitrary script execution in the context of the affected site. Public references (NVD/Red Hat/CVE listings) descri...

5.4CVSS5.5AI score0.00799EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/02/17 1:15 p.m.6 views

CVE-2022-40347

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

9.8CVSS6.1AI score0.05348EPSS
Exploits5References4
NVD
NVD
added 2023/02/17 1:15 p.m.39 views

CVE-2022-40347

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

9.8CVSS10AI score0.05348EPSS
Exploits5References4
Prion
Prion
added 2023/02/17 1:15 p.m.19 views

Sql injection

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

7.5CVSS10AI score0.05348EPSS
Exploits5References4Affected Software1
CNNVD
CNNVD
added 2023/02/17 12:0 a.m.4 views

Intern Record System SQL注入漏洞

Intern Record System is an intern record system from the individual developers at Codeprojects. A security vulnerability exists in Intern Record System version 1.0. An attacker can exploit this vulnerability to execute arbitrary code and obtain sensitive information...

9.8CVSS8.9AI score0.05348EPSS
Exploits5References7
Cvelist
Cvelist
added 2023/02/17 12:0 a.m.48 views

CVE-2022-40347

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

10AI score0.05348EPSS
Exploits5References4
Vulnrichment
Vulnrichment
added 2023/02/17 12:0 a.m.7 views

CVE-2022-40347

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

8.6AI score0.05348EPSS
Exploits5References4
CVE
CVE
added 2023/02/17 12:0 a.m.49 views

CVE-2022-40347

CVE-2022-40347 concerns Intern Record System v1.0, exposing a critical SQL Injection in /intern/controller.php via the parameters phone , email , deptType , and name . The root cause is unsafely constructed queries that allow an attacker to access or modify data and potentially execute arbitrary ...

9.8CVSS10AI score0.05348EPSS
Exploits5References4Affected Software1
GithubExploit
GithubExploit
added 2023/02/16 2:29 a.m.7 views

Exploit for Cross-site Scripting in Intern_Record_System_Project Intern_Record_System

CVE-2022-40348: Intern Record System - 'name' and 'email' Cros...

5.4CVSS6.6AI score0.00799EPSS
Exploits1
GithubExploit
GithubExploit
added 2023/02/16 2:16 a.m.6 views

Exploit for SQL Injection in Intern_Record_System_Project Intern_Record_System

CVE-2022-40347: Intern Record System - 'phone', 'email', 'dept...

9.8CVSS10AI score0.05348EPSS
Exploits5
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.5 views

SUSE CVE-2014-0100

Race condition in the inetfragintern function in net/ipv4/inetfragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service use-after-free error or possibly have unspecified other impact via a large series of fragmented ICMP Echo Request packets to a system wi...

9.3CVSS7.2AI score0.02985EPSS
Exploits1References4
OSV
OSV
added 2022/10/19 2:15 p.m.2 views

UBUNTU-CVE-2022-43042

GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isomintern.c...

7.8CVSS7.4AI score0.00346EPSS
Exploits1References4
Rows per page
Query Builder