PT-2025-4070 · Unknown · Needyamin Library Card System

Name of the Vulnerable Software and Affected Versions: needyamin Library Card System version 1.0 Description: A problem was found in the needyamin Library Card System. It affects an unknown functionality of the file signup.php of the component Registration Page. The manipulation of the arguments...

CVE-2024-54921

A SQL Injection was found in /studentsignup.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the username, firstname, lastname, and classid parameters...

CVE-2022-38946

Arbitrary File Upload vulnerability in Doctor-Appointment version 1.0 in /Frontend/signupcom.php, allows attackers to execute arbitrary code...

CVE-2022-38946

Arbitrary File Upload vulnerability in Doctor-Appointment version 1.0 in /Frontend/signupcom.php, allows attackers to execute arbitrary code...

CVE-2024-54920

A SQL Injection vulnerability was found in /teachersignup.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL command to get unauthorized database access via the firstname, lastname, and classid parameters...

Doctor-Appointment 安全漏洞

Doctor-Appointment is a doctor's appointment system by Divyanshu Sharma Personal Developer. A security vulnerability exists in Doctor-Appointment version 1.0, which stems from /Frontend/signupcom.php containing an arbitrary file upload vulnerability...

PT-2024-36438 · Unknown · Kashipara E-Learning Management System

Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System version 1.0 Description: A SQL injection issue was found in the /teacher signup.php file, allowing remote attackers to execute arbitrary SQL commands and gain unauthorized access to the database through...

CVE-2024-11818

A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System 1.0. This affects an unknown part of the file /signup.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-11243

A vulnerability classified as problematic has been found in code-projects Online Shop Store 1.0. This affects an unknown part of the file /signup.php. The manipulation of the argument m2 with the input leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has...

OESA-2024-2421 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

Online Shop Store 代码注入漏洞

Online Shop Store is an online store system from Online Shop Store, Inc. A code injection vulnerability exists in Online Shop Store version 1.0, which stems from a cross-site scripting vulnerability in the m2 parameter of the /signup.php file...

PT-2024-16853 · Unknown · Code-Projects Online Shoe Store

Name of the Vulnerable Software and Affected Versions: code-projects Online Shop Store version 1.0 Description: A problematic issue has been found in the code-projects Online Shop Store, affecting an unknown part of the file /signup.php. The manipulation of the argument m2 with the input leads to...

CVE-2024-11054

A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. This vulnerability affects unknown code of the file /music/ajax.php?action=signup. The manipulation of the argument pp leads to unrestricted upload. The attack can be initiated remotely. Th...

SourceCodester Simple Music Cloud Community System 代码问题漏洞

SourceCodester Simple Music Cloud Community System is a SourceCodester open source simple music cloud community system. A code issue vulnerability exists in version 1.0 of the SourceCodester Simple Music Cloud Community System, which stems from the parameter pp in the file...

PT-2024-16727 · Unknown · Sourcecodester Simple Music Cloud Community System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Music Cloud Community System version 1.0 Description: A critical vulnerability was found in the SourceCodester Simple Music Cloud Community System. This issue affects unknown code of the file /music/ajax.php?action=signu...

OESA-2024-2354 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

Exploit for CVE-2024-50475

CVE-2024-50475 Signup Page = 1.0 - Unauthenticated Arbitra...

CVE-2024-10702

A vulnerability classified as critical has been found in code-projects Simple Car Rental System 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument fname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed...

PT-2024-16477 · Unknown · Simple Car Rental System

Name of the Vulnerable Software and Affected Versions: Simple Car Rental System version 1.0 Description: A critical issue has been found in the Simple Car Rental System, affecting an unknown function of the file /signup.php. The manipulation of the fname argument leads to SQL injection. It is...

CSRF ON SIGNUP PAGE

CSRF ON CREATING A NEW USER in mlflow/mlflow Reported on Oct 31st 2024 The Signup feature of Mlflow is vulnerable to CSRF attack that allow attacker to create a new account. This may be used to perform unauthorised actions on behalf of the malcious user . Proof of Concept : An attacker can use CS...