CVE-2023-43456

Cross Site Scripting vulnerability in Service Provider Management System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the firstname, middlename and lastname parameters in the /php-spms/admin/?page=user endpoint...

CVE-2023-43457

An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint...

EUVD-2023-43806

Malicious code in bioql PyPI...

EUVD-2023-47872

Malicious code in bioql PyPI...

EUVD-2023-34227

Malicious code in bioql PyPI...

EUVD-2023-47873

Malicious code in bioql PyPI...

EUVD-2023-44288

Malicious code in bioql PyPI...

EUVD-2023-38636

Malicious code in bioql PyPI...

EUVD-2024-47387

Malicious code in bioql PyPI...

EUVD-2023-33842

Malicious code in bioql PyPI...

CVE-2023-34581

Sourcecodester Service Provider Management System v1.0 is vulnerable to SQL Injection via the ID parameter in /php-spms/?page=services/view=2...

CVE-2023-2349

A vulnerability classified as problematic has been found in SourceCodester Service Provider Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument page leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2023-2345

A vulnerability was found in SourceCodester Service Provider Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /classes/Master.php?f=deleteinquiry. The manipulation leads to improper authorization. The attack may be launched remotel...

CVE-2023-2347

A vulnerability was found in SourceCodester Service Provider Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/services/manageservice.php. The manipulation of the argument id leads to sql injection. The attack can be initiated...

CVE-2023-3644

A vulnerability was found in SourceCodester Service Provider Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /classes/Master.php?f=saveinquiry. The manipulation of the argument id leads to sql injection. The attack can be initiated...

CVE-2023-2344

A vulnerability has been found in SourceCodester Service Provider Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=saveservice of the component HTTP POST Request Handler. The manipulation of the argument...

CVE-2024-6267

CVE-2024-6267 affects SourceCodester Service Provider Management System 1.0. The vulnerability is in the System Info Page (system_info/index.php) and arises from improper handling of the System Name/System Short Name, enabling cross-site scripting. The issue is exploitable remotely and the exploi...

CVE-2024-6267 SourceCodester Service Provider Management System System Info Page index.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Service Provider Management System 1.0. Affected by this vulnerability is an unknown functionality of the file systeminfo/index.php of the component System Info Page. The manipulation of the argument System Name/System Short Na...

Service Provider Management System Cross-Site Scripting Vulnerability

Service Provider Management System is a web-based application by Carlo Montero, an individual developer. It is designed to provide dynamic Web sites for service provider companies. A cross-site scripting vulnerability exists in Service Provider Management System version 1.0, which stems from a...

CVE-2023-43457

An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint...