Lucene search
K

79 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:20 a.m.18 views

CVE-2024-2063

A vulnerability, which was classified as problematic, was found in SourceCodester Petrol Pump Management Software 1.0. Affected is an unknown function of the file /admin/app/profilecrud.php. The manipulation of the argument username leads to cross site scripting. It is possible to launch the atta...

4.8CVSS4.9AI score0.00398EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:14 a.m.6 views

CVE-2024-2061

A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. This vulnerability affects unknown code of the file /admin/editsupplier.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...

7.2CVSS7.4AI score0.00547EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:13 a.m.14 views

CVE-2024-2062

A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. This issue affects some unknown processing of the file /admin/editcategories.php. The manipulation of the argument id leads to sql injection. The attack may be initiated...

7.2CVSS7.3AI score0.00547EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27028

Malicious code in bioql PyPI...

4.8CVSS4AI score0.00398EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-33088

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.00419EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-33061

Malicious code in bioql PyPI...

5.8CVSS5AI score0.00974EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33060

Malicious code in bioql PyPI...

5.8CVSS5AI score0.00711EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-27024

Malicious code in bioql PyPI...

7.2CVSS5AI score0.00593EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27026

Malicious code in bioql PyPI...

7.2CVSS5AI score0.00547EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.8 views

CVE-2024-28558

SQL Injection vulnerability in sourcecodester Petrol pump management software v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin/app/webcrud.php...

8.8CVSS8.6AI score0.01163EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:39 a.m.11 views

CVE-2024-27743

Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the Address parameter in the addinvoices.php component...

6.1CVSS7.1AI score0.01307EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:39 a.m.10 views

CVE-2024-27747

File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component...

9.8CVSS7.6AI score0.23581EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:38 a.m.10 views

CVE-2024-27746

SQL Injection vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email address parameter in the index.php component...

9.8CVSS8.5AI score0.12946EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:38 a.m.8 views

CVE-2024-27744

Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the image parameter in the profile.php component...

6.1CVSS7.1AI score0.01335EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:37 a.m.7 views

CVE-2024-2060

A vulnerability classified as critical has been found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/app/logincrud.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...

7.2CVSS7.4AI score0.00526EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:20 a.m.7 views

CVE-2024-10354

A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/print.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

5.8CVSS7.5AI score0.00711EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:22 a.m.11 views

CVE-2024-2058

A vulnerability was found in SourceCodester Petrol Pump Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/product.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be...

7.2CVSS7.1AI score0.00613EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:16 a.m.5 views

CVE-2024-10380

A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/ajaxproduct.php. The manipulation of the argument dropservices leads to sql injection. The attack may be...

7.5CVSS7.4AI score0.00372EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/26 11:31 p.m.21 views

CVE-2024-10407 SourceCodester Petrol Pump Management Software edit_customer.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/editcustomer.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

6.5CVSS0.00419EPSS
Exploits0References5
CVE
CVE
added 2024/10/26 11:31 p.m.68 views

CVE-2024-10407

CVE-2024-10407 affects SourceCodester Petrol Pump Management Software 1.0. The vulnerability is a SQL injection in the /admin/edit_customer.php file, triggered by manipulating the id parameter, which can be exploited remotely. The exploit has been publicly disclosed. Public details do not specify...

7.2CVSS6.8AI score0.00419EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder