Lucene search
+L

31 matches found

Positive Technologies
Positive Technologies
added 2023/12/28 12:0 a.m.7 views

PT-2023-32892 · Code Projects · Code-Projects Intern Membership Management System

Name of the Vulnerable Software and Affected Versions: code-projects Intern Membership Management System version 2.0 Description: A critical issue was found in the User Registration component, specifically in the /user registration/ file. The manipulation of the userName argument leads to SQL...

9.8CVSS7.2AI score0.0072EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2023/11/14 10:15 p.m.5 views

CVE-2023-46581

SQL injection vulnerability in Inventory Management v.1.0 allows a local attacker to execute arbitrary code via the name, uname and email parameters in the registration.php component...

5.5CVSS6.2AI score0.00309EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.4 views

PT-2023-30099 · Unknown · Inventory Management

Name of the Vulnerable Software and Affected Versions: Inventory Management version 1.0 Description: The issue allows a local attacker to execute arbitrary code via the name, uname, and email parameters in the "registration.php" component. This is a SQL injection vulnerability. Recommendations: F...

5.5CVSS6.2AI score0.00309EPSS
Exploits1References2
OSV
OSV
added 2023/05/09 1:15 p.m.4 views

CVE-2023-2594

A vulnerability, which was classified as critical, was found in SourceCodester Food Ordering Management System 1.0. Affected is an unknown function of the component Registration. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The...

9.8CVSS6.9AI score0.01009EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.6 views

PT-2023-20372 · Sourcecodester · Sourcecodester Food Ordering Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Food Ordering Management System version 1.0 Description: A critical issue was found in the Registration component, where the manipulation of the username argument leads to SQL injection. This can be exploited remotely...

9.8CVSS8.3AI score0.01009EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.6 views

Food Ordering Management System SQL注入漏洞

Food Ordering Management System is a food ordering management system by Carlo Montero personal developer. It provides an online platform to order food from a restaurant or fast food chain. A SQL injection vulnerability exists in SourceCodester Food Ordering Management System version 1.0, which...

9.8CVSS7.5AI score0.01009EPSS
Exploits0References4
OSV
OSV
added 2021/09/24 10:15 p.m.11 views

CVE-2020-20508

Shopkit v2.7 contains a reflective cross-site scripting XSS vulnerability in the /account/register component, which allows attackers to hijack user credentials via a crafted payload in the E-Mail text field...

6.1CVSS5.6AI score
Exploits0References1
Prion
Prion
added 2013/12/14 10:55 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the registration component in Cisco WebEx Training Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul36207...

4.3CVSS6AI score0.02082EPSS
Exploits1References5
Cvelist
Cvelist
added 2013/12/14 10:0 p.m.23 views

CVE-2013-6709

The registration component in Cisco WebEx Training Center provides the training-session URL before payment is completed, which allows remote attackers to bypass intended access restrictions and join an audio conference by entering credential fields from this URL, aka Bug ID CSCul57111...

6.6AI score0.01703EPSS
Exploits1References3
Cvelist
Cvelist
added 2013/12/14 10:0 p.m.21 views

CVE-2013-6963

Cross-site scripting XSS vulnerability in the registration component in Cisco WebEx Training Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul36207...

5.6AI score0.02082EPSS
Exploits1References5
Packet Storm
Packet Storm
added 2011/04/24 12:0 a.m.40 views

Joomla Themes Cross Site Scripting / Denial Of Service

Hello list! I want to warn you about Cross-Site Scripting, Full path disclosure, Abuse of Functionality and Denial of Service vulnerabilities in multiple themes and components for Joomla. ------------------------- Affected products: ------------------------- Similarly to vulnerabilities in multip...

0.5AI score
Exploits0
Rows per page
Query Builder