191 matches found
CVE-2024-1700
A vulnerability, which was classified as problematic, was found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument username with the input alert"xss" leads to cross site scripting. It is possible to launch the...
CVE-2024-1700
A vulnerability, which was classified as problematic, was found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument username with the input alert"xss" leads to cross site scripting. It is possible to launch the...
Improper access control
A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...
CVE-2024-1701 keerti1924 PHP-MYSQL-User-Login-System edit.php access control
A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...
CVE-2024-1701 keerti1924 PHP-MYSQL-User-Login-System edit.php access control
A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...
CVE-2024-1701
CVE-2024-1701 affects keerti1924’s PHP-MYSQL-User-Login-System v1.0, with the vulnerability isolated to an issue in the /edit.php file that enables improper access controls. The attack is described as remote; the exploit has been disclosed publicly. Connected sources confirm the root cause relate...
CVE-2024-1700 keerti1924 PHP-MYSQL-User-Login-System signup.php cross site scripting
A vulnerability, which was classified as problematic, was found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument username with the input alert"xss" leads to cross site scripting. It is possible to launch the...
CVE-2024-1700
CVE-2024-1700 affects the keerti1924 PHP-MYSQL-User-Login-System v1.0. The vulnerability is in an unknown function of the file /signup.php where manipulating the username parameter with input such as results in a cross-site scripting (XSS) vulnerability. It is exploitable remotely and the public...
CVE-2024-1700 keerti1924 PHP-MYSQL-User-Login-System signup.php cross site scripting
A vulnerability, which was classified as problematic, was found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument username with the input alert"xss" leads to cross site scripting. It is possible to launch the...
PHP MySQL User Signup Login System SQL Injection Vulnerability
PHP MySQL User Signup Login System is a login and registration form using HTML, PHP and MySQL. A SQL injection vulnerability exists in PHP MySQL User Signup Login System version 1.0, which originates from a SQL injection vulnerability in the file /edit.php...
PHP MySQL User Signup Login System Access Control Error Vulnerability
The PHP MySQL User Signup Login System is a login and registration form that uses HTML, PHP and MySQL. An access control error vulnerability exists in PHP MySQL User Signup Login System version 1.0, which originates from an access control error vulnerability in the file /edit.php...
PT-2024-18234 · Unknown · Keerti1924 Php-Mysql-User-Login-System
Name of the Vulnerable Software and Affected Versions: keerti1924 PHP-MYSQL-User-Login-System version 1.0 Description: A critical issue has been found, affecting an unknown functionality of the file /edit.php, leading to improper access controls. The attack can be launched remotely...
CVE-2024-1111
A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Login System 1.0. Affected by this issue is some unknown functionality of the file add-user.php. The manipulation of the argument qr-code leads to cross site scripting. The attack may be launched...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Login System 1.0. Affected by this issue is some unknown functionality of the file add-user.php. The manipulation of the argument qr-code leads to cross site scripting. The attack may be launched...
CVE-2024-1111
The CVE-2024-1111 entry concerns SourceCodester QR Code Login System 1.0, where the issue affects the add-user.php file. The root cause is manipulation of the qr-code argument, enabling cross-site scripting (XSS). The vulnerability can be exploited remotely and impacts unknown functionality in ad...
CVE-2024-1111 SourceCodester QR Code Login System add-user.php cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Login System 1.0. Affected by this issue is some unknown functionality of the file add-user.php. The manipulation of the argument qr-code leads to cross site scripting. The attack may be launched...
PT-2024-16770
Name of the Vulnerable Software and Affected Versions SourceCodester QR Code Login System version 1.0 Description A vulnerability has been found in the SourceCodester QR Code Login System, affecting some unknown functionality of the file add-user.php. The manipulation of the qr-code argument lead...
CVE-2024-24139
Sourcecodester Login System with Email Verification 1.0 allows SQL Injection via the 'user' parameter...
Sql injection
Sourcecodester Login System with Email Verification 1.0 allows SQL Injection via the 'user' parameter...
CVE-2024-24139
CVE-2024-24139 affects Sourcecodester Login System with Email Verification version 1.0. The vulnerability is an SQL Injection in the 'user' parameter, allowing remote exploitation (attack vector: network; complexity: low) with privileges required: high and no user interaction. Impact is rated hig...