139 matches found
PT-2024-18386 · Sourcecodester · Sourcecodester Employee Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Management System version 1.0 Description: A critical issue affects some unknown functionality of the file /myprofile.php. The manipulation of the id argument with the input 1%20or%201=1 leads to SQL injection. The...
PT-2024-16717 · Codeastro · Codeastro Real Estate Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro Real Estate Management System version 1.0 Description: A problematic issue was found in the CodeAstro Real Estate Management System, affecting some unknown functionality of the file profile.php of the component Feedback Form. The...
PT-2024-15815 · Unknown · Codeastro Online Railway Reservation System
Name of the Vulnerable Software and Affected Versions: CodeAstro Online Railway Reservation System version 1.0 Description: A vulnerability has been found in the CodeAstro Online Railway Reservation System, classified as problematic. This issue affects unknown code of the file pass-profile.php. T...
CVE-2023-7050
A vulnerability has been found in PHPGurukul Online Notes Sharing System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file user/profile.php. The manipulation of the argument name/email leads to cross site scripting. The attack can be launche...
PHPGurukul Online Notes Sharing System Security Vulnerability
PHPGurukul Online Notes Sharing System is an online notes sharing system from PHPGurukul Inc. A security vulnerability exists in version 1.0 of the PHPGurukul Online Notes Sharing System, which originates from a cross-site scripting XSS vulnerability in the file user/profile.php...
PT-2023-32369 · Alexanderlivanov · Fotoscms2
Name of the Vulnerable Software and Affected Versions: AlexanderLivanov FotosCMS2 versions up to 2.4.3 Description: A problematic vulnerability was found in the Cookie Handler component of the file profile.php, where the manipulation of the username argument leads to cross-site scripting. The...
CVE-2023-3888
A vulnerability was found in Campcodes Beauty Salon Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack may be...
Campcodes Beauty Salon Management System SQL注入漏洞
Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which originates from an unknown function in the file /admin/admin-profile.php that can lead to SQL injection...
The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component
The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component By Bing Sun · May 03, 2023 Overview In October 2022, Microsoft released a security patch to address a unique information disclosure vulnerability in the...
PT-2023-17331 · Unknown · Phpgurukul Bp Monitoring Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul BP Monitoring Management System version 1.0 Description: A critical issue was found in the User Profile Update Handler component, specifically in the file profile.php. The manipulation of the name and mobno arguments leads to SQL...
PT-2023-16882 · Sourcecodester · Sourcecodester Online Graduate Tracer System
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Graduate Tracer System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file admin/prof.php. The manipulation of the id argument leads to sql injection...
PT-2023-15569 · Unknown · Tramyardg Hotel-Mgmt-System
Name of the Vulnerable Software and Affected Versions: Tramyardg hotel-mgmt-system version 2022.4 Description: The issue concerns a Cross Site Scripting XSS vulnerability. It can be exploited via the process update profile.php file. Recommendations: For Tramyardg hotel-mgmt-system version 2022.4,...
PT-2023-12632 · Sourcecodester · Sourcecodester Royale Event Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Royale Event Management System version 1.0 Description: A problematic issue has been found in the system, affecting an unknown function of the file /royal event/companyprofile.php. The manipulation of the companyname, regno,...
Event Management System 跨站脚本漏洞
Event Management System is an event management system. A cross-site scripting XSS vulnerability exists in SourceCodester Royale Event Management System version 1.0, which originates from an unknown function in the file /royalevent/companyprofile.php, where manipulation of the parameters...
PT-2022-26730 · Unknown · Online Tours & Travels Management System
Name of the Vulnerable Software and Affected Versions: Online Tours & Travels Management System version 1.0 Description: The issue is related to an arbitrary file upload vulnerability in the update profile.php component. This allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-30822
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "usersprofile.php" file...
PT-2020-18487
Name of the Vulnerable Software and Affected Versions PHPGurukul Hostel Management System version 2.0 Description The issue allows SQL injection via the id parameter in the "full-profile.php" file. This could potentially be exploited to extract or modify sensitive data. Recommendations For...
Ingenious School Management System my_profile.php File Arbitrary File Upload Vulnerability
Ingenious School Management System is a web-based school management system. The system supports adding courses, posting grades and managing teachers. A security vulnerability exists in the myprofile.php file in Ingenious School Management System version 2.3.0. An attacker can exploit this...
DEBIAN-CVE-2017-5506
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file...
Pivotal Cloud Foundry Elastic Runtime Information Disclosure Vulnerability
Pivotal Cloud Foundry PCF is an open source Platform-as-a-Service PaaS cloud computing platform from Pivotal Software that provides container scheduling, continuous delivery, and automated service deployment.Elastic Runtime is a runtime environment for Pivotal Cloud Foundry. Cloud Foundry PHP...