216 matches found
CVE-2024-1971 Surya2Developer Online Shopping System POST Parameter login.php sql injection
A vulnerability has been found in Surya2Developer Online Shopping System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php of the component POST Parameter Handler. The manipulation of the argument password with the input...
Sql injection
A vulnerability, which was classified as critical, has been found in osCommerce 4. Affected by this issue is some unknown functionality of the file /b2b-supermarket/shopping-cart of the component POST Parameter Handler. The manipulation of the argument estimatecountryid leads to sql injection. Th...
CVE-2023-6579 osCommerce POST Parameter shopping-cart sql injection
A vulnerability, which was classified as critical, has been found in osCommerce 4. Affected by this issue is some unknown functionality of the file /b2b-supermarket/shopping-cart of the component POST Parameter Handler. The manipulation of the argument estimatecountryid leads to sql injection. Th...
PT-2023-32706 · Unknown · Oscommerce
Name of the Vulnerable Software and Affected Versions: osCommerce 4 affected versions not specified Description: A critical issue has been found in osCommerce 4, affecting some unknown functionality of the file /b2b-supermarket/shopping-cart of the component POST Parameter Handler. The manipulati...
CVE-2023-5018 SourceCodester Lost and Found Information System POST Parameter sql injection
A vulnerability classified as critical has been found in SourceCodester Lost and Found Information System 1.0. This affects an unknown part of the file /classes/Master.php?f=savecategory of the component POST Parameter Handler. The manipulation of the argument id leads to sql injection. It is...
CVE-2023-5018 SourceCodester Lost and Found Information System POST Parameter sql injection
A vulnerability classified as critical has been found in SourceCodester Lost and Found Information System 1.0. This affects an unknown part of the file /classes/Master.php?f=savecategory of the component POST Parameter Handler. The manipulation of the argument id leads to sql injection. It is...
CVE-2023-3854 phpscriptpoint BloodBank POST Parameter search sql injection
A vulnerability classified as critical has been found in phpscriptpoint BloodBank 1.1. Affected is an unknown function of the file /search of the component POST Parameter Handler. The manipulation of the argument country/city/bloodgroupid leads to sql injection. It is possible to launch the attac...
CVE-2023-3751
A vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component POST Parameter Handler. The manipulation of the argument products leads to sql injection. The attack can be...
CVE-2023-3751
A vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component POST Parameter Handler. The manipulation of the argument products leads to sql injection. The attack can be...
Sql injection
A vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component POST Parameter Handler. The manipulation of the argument products leads to sql injection. The attack can be...
CVE-2023-3751 Super Store Finder POST Parameter index.php sql injection
A vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component POST Parameter Handler. The manipulation of the argument products leads to sql injection. The attack can be...
PT-2023-26002 · Unknown · Super Store Finder
Name of the Vulnerable Software and Affected Versions: Super Store Finder version 3.6 Description: A critical issue was found in the file /index.php of the component POST Parameter Handler, where the manipulation of the products argument leads to sql injection. This issue can be exploited remotel...
Sql injection
A vulnerability, which was classified as critical, was found in Nesote Inout Blockchain EasyPayments 1.0. Affected is an unknown function of the file /index.php/payment/getcoinaddress of the component POST Parameter Handler. The manipulation of the argument coinid leads to sql injection. It is...
Sql injection
A vulnerability classified as critical has been found in Nesote Inout Blockchain FiatExchanger 3.0. This affects an unknown part of the file /index.php/coins/updatemarketboxslider of the component POST Parameter Handler. The manipulation of the argument marketcurrency leads to sql injection. It i...
CVE-2023-3624 Nesote Inout Blockchain FiatExchanger POST Parameter update_marketboxslider sql injection
A vulnerability classified as critical has been found in Nesote Inout Blockchain FiatExchanger 3.0. This affects an unknown part of the file /index.php/coins/updatemarketboxslider of the component POST Parameter Handler. The manipulation of the argument marketcurrency leads to sql injection. It i...
PT-2023-25492 · Unknown · Nesote Inout Blockchain Fiatexchanger
Name of the Vulnerable Software and Affected Versions: Nesote Inout Blockchain FiatExchanger version 3.0 Description: A critical vulnerability has been found in the component POST Parameter Handler, affecting an unknown part of the file /index.php/coins/update marketboxslider. The manipulation of...
CVE-2023-3189
A vulnerability, which was classified as problematic, was found in SourceCodester Online School Fees System 1.0. This affects an unknown part of the file /paysystem/branch.php of the component POST Parameter Handler. The manipulation of the argument branch leads to cross site scripting. It is...
CVE-2023-3005 SourceCodester Local Service Search Engine Management System POST Parameter cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Local Service Search Engine Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=savearea of the component POST Parameter Handler. The manipulation of the argument area with the inp...
CVE-2023-3005 SourceCodester Local Service Search Engine Management System POST Parameter cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Local Service Search Engine Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=savearea of the component POST Parameter Handler. The manipulation of the argument area with the inp...
CVE-2023-2864
A vulnerability was found in SourceCodester Online Jewelry Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file customer.php of the component POST Parameter Handler. The manipulation of the argument Custid leads to cross site scripting. The...