262 matches found
CVE-2024-4913
A vulnerability classified as critical was found in Campcodes Online Examination System 1.0. This vulnerability affects unknown code of the file exam.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...
CVE-2024-4714
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /model/updatesubject.php. The manipulation of the argument name leads to cross site scripting. The...
PT-2024-32014 · Unknown · Campcodes Complete Web-Based School Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A problematic vulnerability has been found in the system, affecting an unknown part of the file /view/student exam mark insert form1.php. The manipulation of the...
PT-2024-25857 · Unknown · Sourcecodester Prison Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Prison Management System version 1.0 Description: A critical issue has been found in the SourceCodester Prison Management System, affecting an unknown functionality of the file /Admin/edit profile.php. This issue leads to sql...
CVE-2024-3091
A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/search.php of the component Search Request Page. The manipulation leads to cross site scripting. It is possible to launch the...
CVE-2024-2574
A vulnerability classified as critical was found in SourceCodester Employee Task Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit-task.php. The manipulation of the argument taskid leads to authorization bypass. The attack can be launched remotely...
CVE-2024-1830 code-projects Library System lost-password.php sql injection
A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file Source/librarian/user/student/lost-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched...
CVE-2024-0889
A vulnerability was found in Kmint21 Golden FTP Server 2.02b and classified as problematic. This issue affects some unknown processing of the component PASV Command Handler. The manipulation leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the...
PT-2024-15895 · Unknown · Hongmaple Octopus
Name of the Vulnerable Software and Affected Versions: hongmaple octopus version 1.0 Description: A critical issue has been found in the software, affecting an unknown function of the file /system/dept/edit. The manipulation of the ancestors argument leads to SQL injection. This issue can be...
PT-2024-15657 · Dedebiz · Dedebiz
Name of the Vulnerable Software and Affected Versions: DedeBIZ version 6.3.0 Description: A critical vulnerability has been found in DedeBIZ, affecting unknown code in the file /admin/makehtml freelist action.php. The manipulation of the startid argument leads to SQL injection. The attack can be...
CVE-2024-0308
A vulnerability was found in Inis up to 2.0.1. It has been rated as critical. This issue affects some unknown processing of the file app/api/controller/default/Proxy.php. The manipulation of the argument purl leads to server-side request forgery. The attack may be initiated remotely. The exploit...
PT-2024-15451 · Beijing Baichuo · Beijing Baichuo Smart S150 Management Platform
Name of the Vulnerable Software and Affected Versions: Beijing Baichuo Smart S150 Management Platform versions up to 20240101 Description: A critical issue affects some unknown functionality of the file /useratte/userattestation.php of the component HTTP POST Request Handler. The manipulation of...
PT-2023-32257 · Netentsec · Netentsec Ns-Asg Application Security Gateway
Name of the Vulnerable Software and Affected Versions: Netentsec NS-ASG Application Security Gateway version 6.3 Description: A critical issue was found in the Netentsec NS-ASG Application Security Gateway, affecting an unknown part of the file /admin/list addr fwresource ip.php. This issue leads...
CVE-2023-2692
A vulnerability has been found in SourceCodester ICT Laboratory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file views/roominfo.php of the component GET Parameter Handler. The manipulation of the argument name leads to cro...
CVE-2023-2413
A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/bookings/managebooking.php. The manipulation of the argument id leads to sql injection. The attack can be...
CVE-2023-2093
A vulnerability, which was classified as critical, was found in SourceCodester Vehicle Service Management System 1.0. This affects an unknown part of the file /classes/Login.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2023-1556
A vulnerability was found in SourceCodester Judging Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file summaryresults.php. The manipulation of the argument maineventid leads to sql injection. The attack can be launched...
CVE-2023-1061
A vulnerability, which was classified as critical, has been found in SourceCodester Doctors Appointment System 1.0. This issue affects some unknown processing of the file /admin/edit-doc.php. The manipulation of the argument email/oldmail leads to sql injection. The attack may be initiated...
CVE-2023-0528
A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been classified as critical. This affects an unknown part of the file admin/abc.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2022-3815 Axiomatic Bento4 mp4decrypt memory leak
A vulnerability, which was classified as problematic, has been found in Axiomatic Bento4. This issue affects some unknown processing of the component mp4decrypt. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...