CVE-2024-12001 code-projects Wazifa System Setting updatesettings.php cross site scripting

A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. Affected is an unknown function of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting. It is possible to...

CVE-2024-12000 code-projects Blood Bank System Setting updatesettings.php cross site scripting

A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting. Th...

CVE-2024-12000 code-projects Blood Bank System Setting updatesettings.php cross site scripting

A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting. Th...

PT-2024-17395 · Unknown · Code-Projects Blood Bank System

Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank System version 1.0 Description: A problem has been found in the Setting Handler component, specifically in the /controllers/updatesettings.php file. The issue affects some unknown processes and can be exploited...

The vulnerability of the Setting Handler component in the Git-based software platform, which is used for collaborative code development on GitLab, allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the Setting Handler component in the Git-based software platform, which is used for collaborative code development on GitLab, is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain...

CVE-2024-8084 SourceCodester Online Computer and Laptop Store Setting SystemSettings.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Computer and Laptop Store 1.0. This affects an unknown part of the file /php-ocls/classes/SystemSettings.php?f=updatesettings of the component Setting Handler. The manipulation of the argument System Name lea...

CVE-2024-6936

A vulnerability, which was classified as problematic, has been found in formtools.org Form Tools 3.1.1. This issue affects some unknown processing of the file /admin/settings/index.php?page=accounts of the component Setting Handler. The manipulation of the argument Page Theme leads to code...

CVE-2024-6936 formtools.org Form Tools Setting code injection

A vulnerability, which was classified as problematic, has been found in formtools.org Form Tools 3.1.1. This issue affects some unknown processing of the file /admin/settings/index.php?page=accounts of the component Setting Handler. The manipulation of the argument Page Theme leads to code...

PT-2024-37974 · Unknown · Form Tools

Name of the Vulnerable Software and Affected Versions: Form Tools version 3.1.1 Description: A problematic issue has been found in the Setting Handler component, affecting the file /admin/settings/index.php?page=accounts. The manipulation of the Page Theme argument leads to code injection. This...

PT-2024-37775 · Croogo · Croogo

Name of the Vulnerable Software and Affected Versions: Croogo versions up to 4.0.7 Description: A critical vulnerability has been found in Croogo, affecting an unknown part of the file admin/settings/settings/prefix/Theme of the component Setting Handler. The manipulation of the argument...

CVE-2024-4681 Campcodes Legal Case Management System Setting general-setting unrestricted upload

A vulnerability, which was classified as critical, was found in Campcodes Legal Case Management System 1.0. Affected is an unknown function of the file /admin/general-setting of the component Setting Handler. The manipulation of the argument favicon/logo leads to unrestricted upload. It is possib...

PT-2024-5974 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 16.11 through 17.0.4 GitLab EE versions 17.1 through 17.1.2 GitLab EE versions 17.2 through 17.2.0 Description: The issue is related to insufficient authorization procedures in the Setting Handler component of the GitLab...

CVE-2024-4021 Keenetic KN-1010/KN-1410/KN-1711/KN-1810/KN-1910 Configuration Setting ndmComponents.js information disclosure

A vulnerability was found in Keenetic KN-1010, KN-1410, KN-1711, KN-1810 and KN-1910 up to 4.1.2.15. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /ndmComponents.js of the component Configuration Setting Handler. The manipulation leads...

PT-2024-3258 · Keenetic · Keenetic Kn-1810 +4

Name of the Vulnerable Software and Affected Versions: Keenetic KN-1010, KN-1410, KN-1711, KN-1810, and KN-1910 versions up to 4.1.2.15 Description: A vulnerability was found in the file /ndmComponents.js of the component Configuration Setting Handler, which can lead to information disclosure. Th...

CVE-2024-3142 Clavister E10/E80 Setting cross-site request forgery

A vulnerability was found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed ...

PT-2024-24060 · Clavister · Clavister E80 +1

Name of the Vulnerable Software and Affected Versions: Clavister E10 and E80 versions up to 14.00.10 Description: A vulnerability was found in the Setting Handler component, leading to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public a...

The vulnerability of the Setting Handler component in the KeePassXC password manager allows attackers to circumvent existing security restrictions.

The vulnerability of the Setting Handler component in the KeePassXC password manager is related to the bypassing of security features. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

CVE-2024-2281

A vulnerability was found in boyiddha Automated-Mess-Management-System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php of the component Setting Handler. The manipulation leads to improper access controls. The attack can be initiated...

CVE-2024-2281 boyiddha Automated-Mess-Management-System Setting index.php access control

A vulnerability was found in boyiddha Automated-Mess-Management-System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php of the component Setting Handler. The manipulation leads to improper access controls. The attack can be initiated...

CVE-2024-2281 boyiddha Automated-Mess-Management-System Setting index.php access control

A vulnerability was found in boyiddha Automated-Mess-Management-System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php of the component Setting Handler. The manipulation leads to improper access controls. The attack can be initiated...