CVE-2025-12614

A weakness has been identified in SourceCodester Best House Rental Management System 1.0. Impacted is the function deletepayment of the file /adminclass.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been made...

CVE-2025-12597

A vulnerability was detected in SourceCodester Best House Rental Management System 1.0. Affected by this vulnerability is the function savecategory of the file /adminclass.php. Performing manipulation of the argument Name results in sql injection. The attack can be initiated remotely. The exploit...

SourceCodester Best House Rental Management System SQL注入漏洞

SourceCodester Best House Rental Management System is a SourceCodester open source house rental management system. SourceCodester Best House Rental Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the incorrect operation of the parameter Name of the...

EUVD-2024-33054

Malicious code in bioql PyPI...

EUVD-2024-50802

Malicious code in bioql PyPI...

CVE-2024-9033

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=savecategory. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-8708

A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file categories.php. The manipulation leads to cross site scripting. The attack may be initiated remotely...

CVE-2024-11860 SourceCodester Best House Rental Management System POST Request ajax.php improper authorization

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects an unknown part of the file /rental/ajax.php?action=deletetenant of the component POST Request Handler. The manipulation of the argument id leads to improper authorization...

SourceCodester Best House Rental Management System 安全漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A security vulnerability exists in SourceCodester Best House Rental Management System version v.1.0. A remote attacker can exploit this vulnerability to execute arbitrary code via the...

CVE-2024-9041

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...

Sourcecodester Best House Rental Management System 安全漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A security vulnerability exists in Sourcecodester Best House Rental Management System version 1.0, which originates from an arbitrary file upload vulnerability in the savesettings...

CVE-2024-8708

CVE-2024-8708 affects SourceCodester Best House Rental Management System 1.0. The flaw is in categories.php processing that enables cross-site scripting and can be triggered remotely. PT-2024-39188 confirms the affected version and recommends patching the 1.0 release, validating inputs, and restr...

CVE-2024-8610

A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the component New Tenant Page. The manipulation of the argument Last Name/First Name/Middle Name leads to cros...

CVE-2024-8610 SourceCodester Best House Rental Management System New Tenant Page index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the component New Tenant Page. The manipulation of the argument Last Name/First Name/Middle Name leads to cros...

SourceCodester Best House Rental Management System 跨站脚本漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A cross-site scripting vulnerability exists in SourceCodester Best House Rental Management System version 1.0, which stems from a cross-site scripting attack caused by incorrect...

CVE-2024-40476

A Cross-Site Request Forgery CSRF vulnerability was found in SourceCodester Best House Rental Management System v1.0. This could lead to an attacker tricking the administrator into adding/modifying/deleting valid tenant data via a crafted HTML page, as demonstrated by a Delete Tenant action at th...

CVE-2024-6066 SourceCodester Best House Rental Management System payment_report.php sql injection

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file paymentreport.php. The manipulation of the argument monthof leads to sql injection. It is possible to launch the attack remotely. The exploi...

CVE-2024-6043

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects the function login of the file adminclass.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2024-5094 SourceCodester Best House Rental Management System view_payment.php sql injection

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This issue affects some unknown processing of the file viewpayment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

CVE-2024-5094

CVE-2024-5094 affects SourceCodester Best House Rental Management System 1.0. The vulnerability is a SQL injection in the file view_payment.php triggered by unsafely processing the id parameter, with remote exploitation possible and exploit disclosed publicly. Impact is described across sources a...