CVE-2024-0494

CVE-2024-0494 affects Kashipara Billing Software 1.0, specifically the HTTP POST Request Handler’s material_bill.php. The vulnerability arises from improper handling of the itemtypeid in the POST data, enabling SQL injection that can be triggered remotely. Public exploit information has been disc...

CVE-2024-0492

A vulnerability classified as critical was found in Kashipara Billing Software 1.0. Affected by this vulnerability is an unknown functionality of the file buyerdetailsubmit.php of the component HTTP POST Request Handler. The manipulation of the argument gstnno leads to sql injection. The attack c...

CVE-2024-0492

CVE-2024-0492 affects Kashipara Billing Software 1.0. The vulnerability is a SQL injection in the GSTN_NO parameter of Buyer_detail_submit.php (HTTP POST Request Handler) that can be triggered remotely. Multiple sources corroborate a critical severity (NVD CVSS 3.1 base score 9.8; other CVSS vect...

CVE-2024-0483

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

Sql injection

A vulnerability classified as critical has been found in Taokeyun up to 1.0.5. This affects the function index of the file application/index/controller/app/Video.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. It is possible to initiate...

CVE-2024-0483 Taokeyun HTTP POST Request Task.php index sql injection

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

CVE-2024-0483

Taokeyun up to version 1.0.5 is affected by a SQL injection in the HTTP POST Request Handler, specifically the Task.php index function where the cid argument is manipulated. The vulnerability can be exploited remotely and, according to sources, has been publicly disclosed. The issue’s impact is d...

CVE-2024-0482

Summary of findings (CVE-2024-0482): Taokeyun up to 1.0.5 is affected by a vulnerability in the HTTP POST Request Handler, specifically the function index within Video.php. The issue arises from manipulating the parameter cid , leading to an SQL injection. The vulnerability is exploitable remotel...

CVE-2024-0481

Taokeyun up to version 1.0.5 contains a SQL injection in the shopGoods function (application/index/controller/app/store/Goods.php) triggered via the keyword parameter in HTTP POST requests. The vulnerability is exploitable remotely, and public exploit details have been disclosed. The CVE entry no...

Sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been declared as critical. Affected by this vulnerability is the function index of the file application/index/controller/m/Drs.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The...

CVE-2024-0480 Taokeyun HTTP POST Request Drs.php index sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been declared as critical. Affected by this vulnerability is the function index of the file application/index/controller/m/Drs.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The...

CVE-2024-0480

Taokeyun up to v1.0.5 suffers SQL injection in the HTTP POST Request Handler, specifically in the index function of application/index/controller/m/Drs.php via the cid parameter. The vulnerability is remotely exploitable; exploitation details are documented in public writeups (e.g., PoC/traffic pa...

PT-2024-15600 · Taokeyun · Taokeyun

Name of the Vulnerable Software and Affected Versions: Taokeyun versions up to 1.0.5 Description: A critical issue was found in the HTTP POST Request Handler component, specifically affecting the function index of the file application/index/controller/app/Task.php. The manipulation of the cid...

CVE-2024-0464

A vulnerability classified as critical has been found in code-projects Online Faculty Clearance 1.0. This affects an unknown part of the file deletefaculty.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the...

Sql injection

A vulnerability classified as critical has been found in code-projects Online Faculty Clearance 1.0. This affects an unknown part of the file deletefaculty.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the...

CVE-2024-0463

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /production/adminviewinfo.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql...

CVE-2024-0462

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /production/designeeviewstatus.php of the component HTTP POST Request Handler. The manipulation of the argument haydi...

Sql injection

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /production/adminviewinfo.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql...

CVE-2024-0463

CVE-2024-0463 affects code-projects Online Faculty Clearance 1.0. The vulnerability is a SQL injection in the HTTP POST Request Handler for the file /production/admin_view_info.php, triggered by manipulating the haydi parameter. Attackers can exploit remotely, and the exploit has been disclosed p...

Sql injection

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been classified as critical. Affected is an unknown function of the file deactivate.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql injection. It is possible to laun...