62 matches found
CVE-2024-11589
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /expcatedit.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit ha...
CVE-2024-11074 itsourcecode Tailoring Management System incadd.php sql injection
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated remotely. The exploit has...
itsourcecode Tailoring Management System SQL注入漏洞
itsourcecode Tailoring Management System is a tailoring management system from itsourcecode open source. A SQL injection vulnerability exists in version 1.0 of itsourcecode Tailoring Management System, which stems from an incorrect manipulation of the parameter sex that can lead to sql injection...
CVE-2024-8171
CVE-2024-8171 affects the Tailoring Management System v1.0. The vulnerability resides in an insecure handling of the parameter title in the file staffcatedit.php , enabling SQL injection when the parameter is manipulated. This is described as a remotely initiable vulnerability with the exploit pu...
CVE-2024-7506
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be launched remotely...
CVE-2024-7506 itsourcecode Tailoring Management System setlogo.php unrestricted upload
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be launched remotely...
CVE-2024-7455 itsourcecode Tailoring Management System partedit.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file partedit.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2024-7455
The CVE-2024-7455 entry concerns Tailoring Management System v1.0, with a vulnerability in partedit.php where modifying the id parameter enables SQL injection. This affects an unknown part of the file and is exploitable remotely; multiple sources state the exploit has been disclosed. Root cause i...
CVE-2024-7081 itsourcecode Tailoring Management System expcatadd.php sql injection
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file expcatadd.php. The manipulation of the argument id/title leads to sql injection. The attack may be launched remotely. The...
CVE-2024-7081 itsourcecode Tailoring Management System expcatadd.php sql injection
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file expcatadd.php. The manipulation of the argument id/title leads to sql injection. The attack may be launched remotely. The...
CVE-2024-6970 itsourcecode Tailoring Management System staffcatadd.php sql injection
A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /staffcatadd.php. The manipulation of the argument title leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-6953
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file sms.php. The manipulation of the argument customer leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2024-6734
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file templateadd.php. The manipulation of the argument title/msg leads to sql injection. It is possible to initiate the attack remotely. The exploit h...
CVE-2024-6735
Summary: CVE-2024-6735 affects itsourcecode Tailoring Management System 1.0. The vulnerability resides in the file setgeneral.php, where manipulating the parameters sitename, email, mobile, sms, or currency can trigger SQL injection. Exploitation appears remote and has been publicized. Technical ...
CVE-2024-6734
CVE-2024-6734 : A SQL injection flaw exists in itsourcecode Tailoring Management System 1.0, originating in the templateadd.php file. The vulnerability is triggered by manipulating the title/msg parameters, enabling remote attackers to execute arbitrary SQL. Exploitation is feasible remotely and ...
CVE-2024-6195 itsourcecode Tailoring Management System orderadd.php sql injection
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file orderadd.php. The manipulation of the argument customer leads to sql injection. The attack can be launched remotely. Th...
CVE-2024-6194 itsourcecode Tailoring Management System editmeasurement.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file editmeasurement.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2024-6194 itsourcecode Tailoring Management System editmeasurement.php sql injection
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file editmeasurement.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2024-6109
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file addmeasurement.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...
CVE-2024-6109
CVE-2024-6109 affects itsourcecode Tailoring Management System 1.0. The vulnerability is an SQL injection in addmeasurement.php triggered by the id parameter, exploitable remotely. Multiple databases/gangs (NVD, Red Hat, CVE list, Vuln enrichment) confirm the issue and indicate high risk/impact; ...