Lucene search
+L

104 matches found

Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.8 views

PT-2024-17807 · Code Projects · Simple Admin Panel

Name of the Vulnerable Software and Affected Versions: code-projects Simple Admin Panel version 1.0 Description: A critical issue was found in the Simple Admin Panel, affecting an unknown function of the file addVariationController.php. The manipulation of the qty argument leads to SQL injection...

8.8CVSS8.4AI score0.00528EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/12/25 11:31 p.m.30 views

CVE-2024-12928 code-projects Simple Admin Panel sql injection

A vulnerability, which was classified as critical, was found in code-projects Simple Admin Panel 1.0. This affects an unknown part. The manipulation of the argument cname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may b...

6.5CVSS0.00387EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/12/25 11:31 p.m.14 views

CVE-2024-12928 code-projects Simple Admin Panel sql injection

A vulnerability, which was classified as critical, was found in code-projects Simple Admin Panel 1.0. This affects an unknown part. The manipulation of the argument cname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may b...

6.5CVSS7.3AI score0.00387EPSS
Exploits0References4
CVE
CVE
added 2024/12/25 11:31 p.m.71 views

CVE-2024-12928

CVE-2024-12928 affects code-projects Simple Admin Panel 1.0. The vulnerability is a SQL injection triggered by the c_name parameter, with remote exploit possibility and publicly disclosed exploit. Multiple connected sources corroborate the issue, including Red Hat and PT Security entries referenc...

8.8CVSS6.8AI score0.00387EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/02/14 3:15 p.m.4 views

CVE-2024-25224

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function...

5.4CVSS5.9AI score0.00375EPSS
Exploits1References1
OSV
OSV
added 2024/02/14 3:15 p.m.4 views

CVE-2024-25226

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

6.1CVSS5.9AI score0.00378EPSS
Exploits0References1
OSV
OSV
added 2024/02/14 3:15 p.m.3 views

CVE-2024-25225

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

5.4CVSS5.9AI score0.00411EPSS
Exploits1References1
OSV
OSV
added 2024/02/14 3:15 p.m.4 views

CVE-2024-25223

Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php...

9.8CVSS5.8AI score0.00628EPSS
Exploits1References1
Prion
Prion
added 2024/02/14 3:15 p.m.15 views

Cross site scripting

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

6AI score0.00378EPSS
Exploits0References1
Prion
Prion
added 2024/02/14 3:15 p.m.14 views

Cross site scripting

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function...

6AI score0.00375EPSS
Exploits1References1
Prion
Prion
added 2024/02/14 3:15 p.m.16 views

Cross site scripting

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

6AI score0.00411EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.9 views

PT-2024-20834 · Unknown · Simple Admin Panel

Name of the Vulnerable Software and Affected Versions: Simple Admin Panel App version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the orderID parameter at the "/adminView/viewEachOrder.php" API endpoint. Recommendations: For Simp...

9.8CVSS6.9AI score0.00628EPSS
Exploits1References6
CVE
CVE
added 2024/02/14 12:0 a.m.76 views

CVE-2024-25226

CVE-2024-25226 : The connected sources consistently describe a Cross-Site Scripting (XSS) vulnerability in Simple Admin Panel App v1.0, exploitable via a crafted payload injected into the Category Name parameter of the Add Category function. Impacted component: the Add Category workflow; vulnerab...

6.1CVSS5.7AI score0.00378EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.4 views

PT-2024-20836 · Unknown · Simple Admin Panel

Name of the Vulnerable Software and Affected Versions: Simple Admin Panel App version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

6.1CVSS5.7AI score0.00411EPSS
Exploits1References5
CVE
CVE
added 2024/02/14 12:0 a.m.68 views

CVE-2024-25225

CVE-2024-25225 affects Simple Admin Panel App v1.0, with a cross-site scripting (XSS) flaw in the Add Category function, exploitable via crafted payloads in the Category Name field. Root cause: input that is not properly sanitized in the Add Category workflow. Impact is described as arbitrary web...

6.1CVSS5.7AI score0.00411EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/02/14 12:0 a.m.19 views

CVE-2024-25226

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

5.7AI score0.00378EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/14 12:0 a.m.13 views

CVE-2024-25226

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

5.9AI score0.00378EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/14 12:0 a.m.11 views

CVE-2024-25225

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

5.3AI score0.00411EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.3 views

PT-2024-20837 · Unknown · Simple Admin Panel

Name of the Vulnerable Software and Affected Versions: Simple Admin Panel App version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

6.1CVSS5.7AI score0.00378EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/02/14 12:0 a.m.7 views

CVE-2024-25223

Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php...

9.9AI score0.00628EPSS
Exploits1References1
Rows per page
Query Builder