CVE-2024-42788

A Stored Cross Site Scripting XSS vulnerability was found in "/music/ajax.php?action=savemusic" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute arbitrary code via "title" & "artist" parameter fields...

PT-2024-30160 · Unknown · Kashipara Music Management System

Name of the Vulnerable Software and Affected Versions: Kashipara Music Management System version 1.0 Description: A Stored Cross Site Scripting XSS issue was found in the "/music/ajax.php?action=save music" endpoint, allowing remote attackers to execute arbitrary code via the title and artist...

Kashipara Music Management System 安全漏洞

Kashipara Music Management System is a music management system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Music Management System v1.0, which originates from the lack of effective filtering and escaping of the "title" and " action=savemusic" parameters lack effective...

Kashipara Music Management System 安全漏洞

Kashipara Music Management System is a music management system from Kashipara. A file upload vulnerability exists in Kashipara Music Management System version 1.0, which originates in /music/ajax.php?action=savemusic, which lacks validation of the uploaded file and can be exploited by an attacker...

PT-2024-22851 · Unknown · Sourcecodester Music Gallery Site

Name of the Vulnerable Software and Affected Versions: SourceCodester Music Gallery Site version 1.0 Description: A critical vulnerability was found in the SourceCodester Music Gallery Site, affecting an unknown functionality of the file classes/Master.php?f=save music. This vulnerability leads t...

PT-2023-17016 · Sourcecodester · Sourcecodester Simple Music Player

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Music Player version 1.0 Description: A critical issue has been found in the software, affecting an unknown function of the file save music.php. The manipulation of the filename argument leads to unrestricted upload. Thi...