CVE-2024-5381

CVE-2024-5381 affects itsourcecode Student Information Management System 1.0. The vulnerability exists in the file view.php via manipulation of the studentId parameter, causing SQL injection. Exploitation can be remote, and multiple sources report that the exploit has been disclosed publicly. Con...

itsourcecode Student Information Management System SQL注入漏洞

Student Information Management System is an itsourcecode open source student information management system. itsourcecode Student Information Management System version 1.0 SQL injection vulnerability exists , the vulnerability stems from the view.php there is an unknown function , through the...

CVE-2024-3768

A vulnerability, which was classified as critical, has been found in PHPGurukul/itsourcecode News Portal 4.1. This issue affects some unknown processing of the file search.php. The manipulation of the argument searchtitle leads to sql injection. The attack may be initiated remotely. The exploit h...

PT-2023-24904 · Unknown · Itsourcecode Online Hotel Management System Project In Php

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Hotel Management System Project In PHP version 1.0.0 Description: The issue concerns SQL injection points existing in the login password input box. This can be exploited through time-based blind injection. Recommendations:...

CVE-2023-34486

itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to Cross Site Scripting XSS. Remote code execution can be achieved by entering malicious code in the date selection box...

CVE-2022-34588

The CVE-2022-34588 entry concerns itsourcecode Advanced School Management System v1.0. A SQL Injection vulnerability exists in the grade parameter of the /school/view/timetable_insert_form.php endpoint. The issue is the classic improper handling of user-controlled input that leads to SQL query ma...

CVE-2022-32370

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getclassroom.php?id=...

CVE-2022-32372

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getsubject.php?id=...

CVE-2022-32371

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getteacher.php?id=...

CVE-2022-32368

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getgrade.php?id=...

Sql injection

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getgrade.php?id=...

CVE-2022-32377

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getexamtimetable.php?id=...

CVE-2022-32378

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getteacherprofile.php?myindex=...

CVE-2022-32380

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getstudentsubject.php?index=...

CVE-2022-32375

CVE-2022-32375 affects itsourcecode Advanced School Management System v1.0. The vulnerability is a SQL Injection flaw in /school/model/get_timetable.php?id=, caused by improper input handling, enabling potential unauthorized access to or manipulation of database data. The CVSS scores indicate hig...