115 matches found
PT-2024-31516 · Unknown · Campcodes Complete Web-Based School Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown processing of the file /view/student payment details3.php. The...
Tenda 4G300 安全漏洞
The Tenda 4G300 is a portable wireless router aimed at users who need mobile Internet access scenarios. The Tenda 4G300 suffers from a buffer overflow vulnerability that stems from incorrect manipulation of the parameters year/month/day/hour/minute/second, for which no detailed vulnerability...
CVE-2023-51802
Cross Site Scripting XSS vulnerability in the Simple Student Attendance System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the page or classmonth parameter in the /php-attendance/attendancereport component...
CVE-2023-51802
Cross Site Scripting XSS vulnerability in the Simple Student Attendance System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the page or classmonth parameter in the /php-attendance/attendancereport component...
Simple Student Attendance System Security Vulnerability
Simple Student Attendance System is a simple student attendance system. A security vulnerability exists in Simple Student Attendance System version v.1.0. An attacker can exploit this vulnerability to execute arbitrary code via a specially crafted payload on the page or classmonth parameter in th...
PT-2024-14296 · Unknown · Simple Student Attendance System
Name of the Vulnerable Software and Affected Versions: Simple Student Attendance System version 1.0 Description: A Cross Site Scripting XSS issue allows a remote attacker to execute arbitrary code via a crafted payload to the page or class month parameter in the "/php-attendance/attendance report...
Suprema BioStar 2 SQL注入漏洞
Suprema BioStar 2 is a web-based biometric security smart lock platform from Suprema Korea. A security vulnerability exists in Suprema BioStar 2 version v2.8.16. An attacker can exploit the vulnerability to perform SQL injection via the values parameter at /users/absence?searchmonth=1...
CVE-2023-27205
Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /kruxton/salesreport.php...
CVE-2023-27205
Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /kruxton/salesreport.php...
SUSE CVE-2006-3682
awstats.pl in AWStats 6.5 build 1.857 and earlier allows remote attackers to obtain the installation path via the 1 year, 2 pluginmode or 3 month parameters...
CVE-2022-36689
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/waste&month=...
CVE-2022-36688
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockout&month=...
CVE-2022-36688
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockout&month=...
CVE-2022-36689
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/waste&month=...
CVE-2022-36686
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockin&month=...
CVE-2022-36686
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockin&month=...
CVE-2022-36686
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockin&month=...
Sql injection
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockout&month=...
Ingredients Stock Management System SQL注入漏洞
Ingredients Stock Management System is an ingredient stock management system from Carlo Montero's personal developer. v1.0 of the Ingredients Stock Management System is vulnerable to SQL injection, which originates from the /admin/?page= reports/stockout&month= is missing validation of external...
PT-2022-23555 · Unknown · Ingredients Stock Management System
Name of the Vulnerable Software and Affected Versions: Ingredients Stock Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the month parameter at the "/admin/?page=reports/stockout&month=" endpoint...