Sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file admin/patient-search.php. The manipulation of the argument searchdata leads to sql injection. The exploit has been...

CVE-2024-0363

CVE-2024-0363 affects PHPGurukul Hospital Management System 1.0. The vulnerability lies in the admin/patient-search.php component where manipulating the argument enables SQL injection. Public disclosure of the exploit is noted, indicating potential practical abuse. No remediation or patch detail...

CVE-2024-0363 PHPGurukul Hospital Management System patient-search.php sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file admin/patient-search.php. The manipulation of the argument searchdata leads to sql injection. The exploit has been...

Cross site scripting

A vulnerability, which was classified as problematic, was found in code-projects E-Commerce Site 1.0. Affected is an unknown function of the file search.php. The manipulation of the argument keyword with the input leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2023-7124 code-projects E-Commerce Site search.php cross site scripting

A vulnerability, which was classified as problematic, was found in code-projects E-Commerce Site 1.0. Affected is an unknown function of the file search.php. The manipulation of the argument keyword with the input leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2019-25156

A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument QSType/QuickSearch leads to cross site scripting. The attack can be launched remotely. The patch is...

CVE-2019-25156

A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument QSType/QuickSearch leads to cross site scripting. The attack can be launched remotely. The patch is...

CVE-2019-25156

CVE-2019-25156 affects dstar2018 Agency versions up to 61. The vulnerability is in the unknown functionality of the file search.php, where manipulating the argument QSType/QuickSearch enables cross-site scripting. The attack can be launched remotely. A patch is provided (hash: 975b56953efabb43451...

CVE-2019-25156 dstar2018 Agency search.php cross site scripting

A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument QSType/QuickSearch leads to cross site scripting. The attack can be launched remotely. The patch is...

CVE-2019-25156 dstar2018 Agency search.php cross site scripting

A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument QSType/QuickSearch leads to cross site scripting. The attack can be launched remotely. The patch is...

PT-2023-11381 · Unknown · Dstar2018 Agency

Name of the Vulnerable Software and Affected Versions: dstar2018 Agency versions up to 61 Description: A problematic vulnerability was found in an unknown functionality of the file search.php, where the manipulation of the argument QSType/QuickSearch leads to cross-site scripting. The attack can ...

CVE-2023-45017

The connected PT-2023-29358 entry identifies CVE-2023-45017 as an unauthenticated SQL Injection in Online Bus Booking System v1.0, caused by lack of validation on the destination parameter in search.php. This allows unfiltered input to reach the database; impact could include data disclosure or m...

PT-2023-29358 · Unknown · Online Bus Booking System

Name of the Vulnerable Software and Affected Versions: Online Bus Booking System version 1.0 Description: The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. Specifically, the destination parameter of the "search.php" resource does not validate the characters received and...

CVE-2023-39551

PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to SQL Injection via osghs/admin/search.php...

CVE-2020-20808

Cross Site Scripting vulnerability in Qibosoft qibosoft v.7 and before allows a remote attacker to execute arbitrary code via the eindtijd and starttijd parameters of do/search.php...

CVE-2020-20808

Cross Site Scripting vulnerability in Qibosoft qibosoft v.7 and before allows a remote attacker to execute arbitrary code via the eindtijd and starttijd parameters of do/search.php...

Cross site scripting

A vulnerability was found in phpscriptpoint Lawyer 1.6. It has been classified as problematic. This affects an unknown part of the file search.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-235401 was assigned to this...

CVE-2023-3945 phpscriptpoint Lawyer search.php cross site scripting

A vulnerability was found in phpscriptpoint Lawyer 1.6. It has been classified as problematic. This affects an unknown part of the file search.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-235401 was assigned to this...

CVE-2023-3861

A vulnerability was found in phpscriptpoint Insurance 1.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /search.php. The manipulation leads to cross site scripting. The attack can be launched remotely. The identifier VDB-235213 was...

Cross site scripting

A vulnerability was found in phpscriptpoint Insurance 1.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /search.php. The manipulation leads to cross site scripting. The attack can be launched remotely. The identifier VDB-235213 was...