itsourcecode Online Bookstore 代码问题漏洞

itsourcecode Online Bookstore is an online bookstore of itsourcecode open source. A code issue vulnerability exists in version 1.0 of itsourcecode Online Bookstore due to an unrestricted file upload in the parameter image...

PT-2024-30205 · Unknown · Itsourcecode Online Accreditation Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Accreditation Management System affected versions not specified Description: The itsourcecode Online Accreditation Management System contains a Cross Site Scripting issue, allowing an attacker to execute arbitrary code via...

CVE-2024-7838

A vulnerability was found in itsourcecode Online Food Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /addcategory.php. The manipulation of the argument cname leads to sql injection. The attack may be launched remotely. The...

CVE-2024-7321

A vulnerability classified as problematic was found in itsourcecode Online Blood Bank Management System 1.0. This vulnerability affects unknown code of the file signup.php of the component User Registration Handler. The manipulation of the argument user leads to cross site scripting. The attack c...

CVE-2024-7321

The CVE-2024-7321 entry concerns itsourcecode Online Blood Bank Management System 1.0. The vulnerability resides in the User Registration Handler, specifically the signup.php file, where manipulation of the user parameter enables cross-site scripting. Attacks can be conducted remotely and the vul...

CVE-2024-7320

CVE-2024-7320 affects itsourcecode Online Blood Bank Management System 1.0, targeting the Admin Login component (/admin/index.php). A SQL injection flaw is triggered by manipulating the user parameter, with remote exploitation possible and public disclosure of exploits. Impact is described as hig...

CVE-2024-7189

CVE-2024-7189 affects itsourcecode Online Food Ordering System 1.0. The vulnerability resides in an unknown function of the file editproduct.php, where manipulation of the photo parameter enables unrestricted file upload. Reported as exploitable remotely, with public disclosure of the exploit. Co...

CVE-2024-6373 itsourcecode Online Food Ordering System addproduct.php unrestricted upload

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be initiated remotely. The...

CVE-2024-6016

A vulnerability, which was classified as critical, has been found in itsourcecode Online Laundry Management System 1.0. Affected by this issue is some unknown functionality of the file adminclass.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-6016

A vulnerability, which was classified as critical, has been found in itsourcecode Online Laundry Management System 1.0. Affected by this issue is some unknown functionality of the file adminclass.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-6016

CVE-2024-6016 affects itsourcecode Online Laundry Management System v1.0, specifically the admin_class.php file where manipulations of the id parameter enable SQL injection. The vulnerability enables remote exploitation with no required user interaction; exploitation details have been publicly di...

CVE-2024-6016 itsourcecode Online Laundry Management System admin_class.php sql injection

A vulnerability, which was classified as critical, has been found in itsourcecode Online Laundry Management System 1.0. Affected by this issue is some unknown functionality of the file adminclass.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-6013

A vulnerability was found in itsourcecode Online Book Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file admindelete.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-6013

CVE-2024-6013 concerns itsourcecode Online Book Store 1.0, where the vulnerability resides in admin_delete.php’s handling of the bookisbn parameter. The documented flaw allows SQL injection, with the attack described as remotely initiable and exploited publicly disclosed. Multiple sources (NVD, R...

CVE-2024-6013 itsourcecode Online Book Store admin_delete.php sql injection

A vulnerability was found in itsourcecode Online Book Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file admindelete.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-6008

A vulnerability, which was classified as critical, was found in itsourcecode Online Book Store up to 1.0. Affected is an unknown function of the file /editbook.php. The manipulation of the argument image leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-5984

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2024-5981

A vulnerability was found in itsourcecode Online House Rental System 1.0. It has been classified as critical. Affected is an unknown function of the file manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-5984

CVE-2024-5984 affects itsourcecode Online Bookstore 1.0, with the vulnerable component being book.php where the bookisbn parameter enables SQL injection. The vulnerability can be exploited remotely, and public disclosures exist (VDB-268460). Multiple connected sources corroborate the issue, inclu...

CVE-2024-5984 itsourcecode Online Bookstore book.php sql injection

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be launched remotely. The exploit has been...