237 matches found
CVE-2024-7164
A vulnerability has been found in SourceCodester School Fees Payment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=login. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The explo...
CVE-2024-33960
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'end' in...
CVE-2024-33968
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'Attendance' and 'YearLevel' in...
CVE-2024-33969
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'id' in...
PT-2024-25592 · Unknown · Janobe Paypal/Card Payment
Name of the Vulnerable Software and Affected Versions: Janobe PayPal/Card Payment version 1.0 Description: A SQL injection issue affects the payment system, allowing an attacker to send a specially crafted query to the server and retrieve stored information through the end parameter in the...
PT-2024-25597 · Paypal · Paypal
Name of the Vulnerable Software and Affected Versions: Payment system versions 1.0 Description: A SQL injection issue affects the PayPal, Credit Card, and Debit Card Payment system. An attacker could exploit this by sending a specially crafted query to the server, allowing them to retrieve all...
CVE-2024-7169
A vulnerability classified as problematic has been found in SourceCodester School Fees Payment System 1.0. This affects an unknown part of the file /ajax.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to th...
CVE-2024-7169
A vulnerability classified as problematic has been found in SourceCodester School Fees Payment System 1.0. This affects an unknown part of the file /ajax.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to th...
CVE-2024-7169 SourceCodester School Fees Payment System ajax.php cross-site request forgery
A vulnerability classified as problematic has been found in SourceCodester School Fees Payment System 1.0. This affects an unknown part of the file /ajax.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to th...
CVE-2024-7169 SourceCodester School Fees Payment System ajax.php cross-site request forgery
A vulnerability classified as problematic has been found in SourceCodester School Fees Payment System 1.0. This affects an unknown part of the file /ajax.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to th...
CVE-2024-7169
CVE-2024-7169 affects SourceCodester School Fees Payment System 1.0. The vulnerability is a cross-site request forgery in the unknown part of the file /ajax.php that can be triggered remotely. Multiple connected sources confirm the issue and link it to the /ajax.php endpoint, with the exploit dis...
CVE-2024-7168
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...
CVE-2024-7167
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /managecourse.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...
CVE-2024-7168
CVE-2024-7168 affects SourceCodester School Fees Payment System 1.0. The vulnerability is an SQL injection in the /manage_user.php file triggered by manipulating the id parameter, enabling remote access with high impact as described in multiple sources. The exploit has been disclosed publicly. No...
CVE-2024-7168 SourceCodester School Fees Payment System manage_user.php sql injection
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...
CVE-2024-7167 SourceCodester School Fees Payment System manage_course.php sql injection
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /managecourse.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...
CVE-2024-7167 SourceCodester School Fees Payment System manage_course.php sql injection
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /managecourse.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...
CVE-2024-7167
CVE-2024-7167 affects SourceCodester School Fees Payment System v1.0, with an SQL injection in the /manage_course.php file via the id parameter. The vulnerability is exploitable remotely and is described as critical; exploitation can lead to disclosure, modification, or damage of data due to inje...
CVE-2024-7166
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been classified as critical. Affected is an unknown function of the file /receipt.php. The manipulation of the argument efid leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2024-7165
A vulnerability was found in SourceCodester School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewpayment.php. The manipulation of the argument efid leads to sql injection. The attack may be initiated remotely. The exploit has been...