104 matches found
PT-2024-17807 · Code Projects · Simple Admin Panel
Name of the Vulnerable Software and Affected Versions: code-projects Simple Admin Panel version 1.0 Description: A critical issue was found in the Simple Admin Panel, affecting an unknown function of the file addVariationController.php. The manipulation of the qty argument leads to SQL injection...
CVE-2024-12928 code-projects Simple Admin Panel sql injection
A vulnerability, which was classified as critical, was found in code-projects Simple Admin Panel 1.0. This affects an unknown part. The manipulation of the argument cname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may b...
CVE-2024-12928 code-projects Simple Admin Panel sql injection
A vulnerability, which was classified as critical, was found in code-projects Simple Admin Panel 1.0. This affects an unknown part. The manipulation of the argument cname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may b...
CVE-2024-12928
CVE-2024-12928 affects code-projects Simple Admin Panel 1.0. The vulnerability is a SQL injection triggered by the c_name parameter, with remote exploit possibility and publicly disclosed exploit. Multiple connected sources corroborate the issue, including Red Hat and PT Security entries referenc...
CVE-2024-25224
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function...
CVE-2024-25226
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
CVE-2024-25225
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
CVE-2024-25223
Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php...
Cross site scripting
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
Cross site scripting
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function...
Cross site scripting
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
PT-2024-20834 · Unknown · Simple Admin Panel
Name of the Vulnerable Software and Affected Versions: Simple Admin Panel App version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the orderID parameter at the "/adminView/viewEachOrder.php" API endpoint. Recommendations: For Simp...
CVE-2024-25226
CVE-2024-25226 : The connected sources consistently describe a Cross-Site Scripting (XSS) vulnerability in Simple Admin Panel App v1.0, exploitable via a crafted payload injected into the Category Name parameter of the Add Category function. Impacted component: the Add Category workflow; vulnerab...
PT-2024-20836 · Unknown · Simple Admin Panel
Name of the Vulnerable Software and Affected Versions: Simple Admin Panel App version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
CVE-2024-25225
CVE-2024-25225 affects Simple Admin Panel App v1.0, with a cross-site scripting (XSS) flaw in the Add Category function, exploitable via crafted payloads in the Category Name field. Root cause: input that is not properly sanitized in the Add Category workflow. Impact is described as arbitrary web...
CVE-2024-25226
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
CVE-2024-25226
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
CVE-2024-25225
A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
PT-2024-20837 · Unknown · Simple Admin Panel
Name of the Vulnerable Software and Affected Versions: Simple Admin Panel App version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...
CVE-2024-25223
Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php...