76 matches found
EUVD-2023-34537
Malicious code in bioql PyPI...
EUVD-2023-23712
Malicious code in bioql PyPI...
EUVD-2023-57877
Malicious code in bioql PyPI...
EUVD-2023-34875
Malicious code in bioql PyPI...
EUVD-2023-34542
Malicious code in bioql PyPI...
CVE-2024-7226
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=saveuser of the component Password Change Handler. The manipulation leads to cross-site request forgery. The attac...
CVE-2023-30458
A username enumeration issue was discovered in Medicine Tracker System 1.0. The login functionality allows a malicious user to guess a valid username due to a different response time from invalid usernames. When one enters a valid username, the response time increases depending on the length of t...
CVE-2023-30106
Sourcecodester Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS via page=about...
CVE-2023-30112
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection...
CVE-2023-30111
Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-1464
A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file Users.php?f=saveuser. The manipulation of the argument firstname/middlename/lastname/username/password leads to improper authentication. It is...
CVE-2023-5581
A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...
CVE-2024-7226
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=saveuser of the component Password Change Handler. The manipulation leads to cross-site request forgery. The attac...
CVE-2024-7226
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=saveuser of the component Password Change Handler. The manipulation leads to cross-site request forgery. The attac...
CVE-2024-7226 SourceCodester Medicine Tracker System Password Change cross-site request forgery
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=saveuser of the component Password Change Handler. The manipulation leads to cross-site request forgery. The attac...
CVE-2024-7226 SourceCodester Medicine Tracker System Password Change cross-site request forgery
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=saveuser of the component Password Change Handler. The manipulation leads to cross-site request forgery. The attac...
CVE-2024-7226
CVE-2024-7226 refers to a cross-site request forgery in SourceCodester Medicine Tracker System 1.0, affecting the code path /classes/Users.php?f=save_user within the Password Change Handler. The vulnerability is triggered remotely and can be exploited after a user visit, with the exploit reported...
Medicine Tracker System 跨站请求伪造漏洞
Medicine Tracker System is a drug tracking system by the individual developer Carlo Montero. A cross-site request forgery vulnerability exists in Medicine Tracker System version 1.0, which stems from unknown code in file /classes/Users.php?f=saveuser that can lead to cross-site request forgery...
CVE-2024-6419
A vulnerability classified as critical was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=savemedicine. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has...
CVE-2024-6419 SourceCodester Medicine Tracker System sql injection
A vulnerability classified as critical was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=savemedicine. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has...