CVE-2024-6253

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...

PT-2025-3945 · Unknown · Itsourcecode Tailoring Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Tailoring Management System version 1.0 Description: A critical vulnerability has been found in the itsourcecode Tailoring Management System. This issue affects unknown code in the file /expadd.php. The manipulation of the expcat...

CVE-2024-12785

The CVE-2024-12785 vulnerability affects itsourcecode Vehicle Management System 1.0, specifically the sendmail.php file. The issue arises from unsafely handling the id (or idcabs) parameter, enabling SQL injection. Exploitation appears to be remote and has been publicly disclosed. Multiple connec...

PT-2024-34481 · Unknown · Itsourcecode Construction Management System

Name of the Vulnerable Software and Affected Versions: Itsourcecode Construction Management System version 1.0 Description: A SQL injection issue in the print.php file allows remote attackers to execute arbitrary SQL commands via the map id parameter. This enables attackers to potentially extract...

PT-2024-31950 · Unknown · Itsourcecode Placement Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Placement Management System version 1.0 Description: The issue is related to Cross Site Scripting XSS via the Full Name field in registration.php. This allows for potential malicious script injection. No information is provided...

PT-2024-31896 · Unknown · Sourcecodester Online Tours & Travels Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Tours and Travels Management System version 1.0 Description: The issue is related to Cross Site Scripting XSS that can be triggered by sending a crafted payload to specific parameters in the travellers.php file. The...

PT-2024-38617 · Unknown · Sourcecodester Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Food Ordering System version 1.0 Description: A critical issue affects some unknown functionality of the file /addcategory.php. The manipulation of the cname argument leads to SQL injection. The attack can be launched...

CVE-2024-7449

A vulnerability, which was classified as critical, was found in itsourcecode Placement Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-6373

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be initiated remotely. The...

PT-2024-37577 · Unknown · Sourcecodester Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Food Ordering System version 1.0 Description: A critical issue has been found in the itsourcecode Online Food Ordering System, affecting the file /addproduct.php. The manipulation of the photo argument leads to unrestricte...

CVE-2024-6253

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...

PT-2024-37444 · Unknown · Sourcecodester Student Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Student Management System version 1.0 Description: A critical vulnerability has been found in the itsourcecode Student Management System, affecting the login page, specifically the file login.php. The manipulation of the user...

CVE-2024-5517

A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file changepwd.php. The manipulation of the argument useremail leads to sql injection. The attack may be launched remotely...

CVE-2024-5392

A vulnerability was found in itsourcecode Online Student Enrollment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file editSubject.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2024-5381

A vulnerability classified as critical was found in itsourcecode Student Information Management System 1.0. Affected by this vulnerability is an unknown functionality of the file view.php. The manipulation of the argument studentId leads to sql injection. The attack can be launched remotely. The...

CVE-2022-32380

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getstudentsubject.php?index=...