270 matches found
CVE-2023-27213
Online Student Management System v1.0 was discovered to contain a SQL injection vulnerability via the searchdata parameter at /eduauth/student/search.php...
Sourcecodester COVID 19 Testing Management System SQL注入漏洞
Sourcecodester COVID 19 Testing Management System is a web-based application that provides an online platform for personal and Covid test administration to manage individual testing processes and results. A SQL injection vulnerability exists in SourceCodester COVID 19 Testing Management System...
Student Management System SQL注入漏洞
Student Management System is a simple web-based student management software by Sk.Amir Hamza, an individual developer from Bangladesh. A security vulnerability exists in Online Student Management System v1.0, which originates from a SQL injection vulnerability via the searchdata parameter of...
PT-2023-21011 · Unknown · Online Student Management System
Name of the Vulnerable Software and Affected Versions: Online Student Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the searchdata parameter at the "/eduauth/student/search.php" API endpoint...
CVE-2022-46128
phpgurukul Doctor Appointment Management System V 1.0.0 is vulnerable to Cross Site Scripting XSS via searchdata=...
CVE-2022-35156
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php...
CVE-2022-35156
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php...
CVE-2022-35155
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the searchdata parameter...
CVE-2022-35155
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the searchdata parameter...
Cross site scripting
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the searchdata parameter...
Sql injection
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php...
CVE-2022-35155
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the searchdata parameter...
CVE-2022-35155
CVE-2022-35155 concerns the Bus Pass Management System v1.0, where a reflected cross-site scripting (XSS) vulnerability exists in the searchdata parameter. Multiple connected sources confirm the issue: the vulnerability is triggered via user-supplied input echoed into HTML in the response (notabl...
CVE-2022-35156
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the searchdata parameter at /buspassms/download-pass.php...
Bus Pass Management System SQL注入漏洞
Bus Pass Management System is a bus pass management system. Bus Pass Management System v1.0 has a SQL injection vulnerability, which stems from an SQL injection vulnerability found to be contained in the searchdata parameter...
Bus Pass Management System 跨站脚本漏洞
Bus Pass Management System is a bus pass management system. A cross-site scripting vulnerability exists in Bus Pass Management System v1.0, which was discovered to contain a cross-site scripting XSS vulnerability via the searchdata parameter...
PT-2022-22605
Name of the Vulnerable Software and Affected Versions Bus Pass Management System version 1.0 Description The issue is related to a reflected cross-site scripting XSS vulnerability. This vulnerability occurs via the searchdata parameter. Recommendations For Bus Pass Management System version 1.0, ...
CVE-2022-31382
Directory Management System v1.0 was discovered to contain a SQL injection vulnerability via the searchdata parameter in search-dirctory.php...
CVE-2022-31382
Directory Management System v1.0 contains a SQL injection vulnerability in the search-dirctory.php component, exploitable via the searchdata parameter. This is the root cause described across multiple sources (CVE-2022-31382). Impact details are limited to the SQLi risk; CVSS scores in the cited ...
PT-2022-3049 · Unknown · Directory Management System
Name of the Vulnerable Software and Affected Versions: Directory Management System version 1.0 Description: The issue is related to a SQL injection vulnerability in the search-dirctory.php component of the Directory Management System. This vulnerability allows a remote attacker to execute arbitra...