PT-2024-12436 · Sourcecodester · Lost/Found Information System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Lost and Found Information System version 1.0 Description: The issue is related to unauthenticated SQL Injection. The vulnerability can be exploited at the API endpoint "?page=items/view&id=". This allows for potential...

PT-2023-32658 · Unknown · Bigprof Online Invoicing System

Name of the Vulnerable Software and Affected Versions: BigProf Online Invoicing System version 2.6 Description: A vulnerability has been discovered in the BigProf Online Invoicing System, which does not sufficiently encode user-controlled input, resulting in persistent XSS through the...

PT-2022-23568 · Unknown · Ingredients Stock Management System

Name of the Vulnerable Software and Affected Versions: Ingredients Stock Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/items/view item.php" API endpoint. Recommendations: For...