Lucene search
+L

112 matches found

osv
osv
added 2024/06/17 1:15 a.m.4 views

CVE-2024-6043

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. This affects the function login of the file adminclass.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The exploi...

9.8CVSS6.8AI score0.01926EPSS
Exploits2References4
vulnrichment
vulnrichment
added 2024/05/18 8:0 p.m.10 views

CVE-2024-5094 SourceCodester Best House Rental Management System view_payment.php sql injection

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This issue affects some unknown processing of the file viewpayment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

7.5CVSS7.4AI score0.00737EPSS
Exploits1References4
cve
cve
added 2024/05/18 8:0 p.m.57 views

CVE-2024-5094

CVE-2024-5094 affects SourceCodester Best House Rental Management System 1.0. The vulnerability is a SQL injection in the file view_payment.php triggered by unsafely processing the id parameter, with remote exploitation possible and exploit disclosed publicly. Impact is described across sources a...

9.8CVSS7.3AI score0.00737EPSS
Exploits1References4Affected Software1
nvd
nvd
added 2024/05/18 7:15 p.m.17 views

CVE-2024-5093

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The...

9.8CVSS7.5AI score0.00698EPSS
Exploits1References4
nvd
nvd
added 2024/05/16 5:15 a.m.20 views

CVE-2024-4945

A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file viewparcel.php. The manipulation of the argument id leads to unrestricted upload. It is possible to launch the attack remotely. The...

9.8CVSS4.8AI score0.00869EPSS
Exploits1References4
cve
cve
added 2024/05/16 5:0 a.m.51 views

CVE-2024-4945

CVE-2024-4945 affects SourceCodester Best Courier Management System 1.0, targeting the file view_parcel.php. The issue arises from manipulation of the id parameter in an unseen function, enabling unrestricted file upload and enabling remote exploitation. Exploitation details are described across ...

9.8CVSS6.9AI score0.00869EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2024/03/13 12:0 a.m.12 views

PT-2024-20307

Name of the Vulnerable Software and Affected Versions SourceCodester Best POS Management System version 1.0 Description A critical issue has been identified, affecting an unknown functionality of the file /view order.php. The manipulation of the id argument leads to SQL injection. This issue can ...

9.8CVSS6.8AI score0.0073EPSS
Exploits1References6
osv
osv
added 2024/03/04 1:15 a.m.6 views

CVE-2024-2156

A vulnerability was found in SourceCodester Best POS Management System 1.0. It has been classified as critical. Affected is an unknown function of the file adminclass.php. The manipulation of the argument img leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

9.8CVSS5.7AI score0.00556EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2024/03/04 1:0 a.m.12 views

CVE-2024-2155 SourceCodester Best POS Management System index.php file inclusion

A vulnerability was found in SourceCodester Best POS Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

4.3CVSS6.9AI score0.00513EPSS
Exploits0References3
prion
prion
added 2023/12/17 11:15 a.m.15 views

Sql injection

A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function of the file manageuser.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The...

5.2CVSS7.8AI score0.00649EPSS
Exploits1References3Affected Software1
osv
osv
added 2023/11/27 12:15 a.m.4 views

CVE-2023-6300

A vulnerability, which was classified as problematic, was found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function. The manipulation of the argument page with the input alert1 leads to cross site scripting. It is possible to launch the attack remotely. The explo...

6.1CVSS4AI score0.00608EPSS
Exploits1References3
nvd
nvd
added 2023/11/27 12:15 a.m.23 views

CVE-2023-6300

A vulnerability, which was classified as problematic, was found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function. The manipulation of the argument page with the input alert1 leads to cross site scripting. It is possible to launch the attack remotely. The explo...

6.1CVSS0.00608EPSS
Exploits1References3
cvelist
cvelist
added 2023/11/26 11:31 p.m.23 views

CVE-2023-6301 SourceCodester Best Courier Management System GET Parameter parcel_list.php cross site scripting

A vulnerability has been found in SourceCodester Best Courier Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file parcellist.php of the component GET Parameter Handler. The manipulation of the argument id with the input alert...

4CVSS6.2AI score0.00608EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2023/11/26 11:31 p.m.14 views

CVE-2023-6300 SourceCodester Best Courier Management System cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function. The manipulation of the argument page with the input alert1 leads to cross site scripting. It is possible to launch the attack remotely. The explo...

4CVSS6.2AI score0.00608EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2023/11/26 12:0 a.m.6 views

PT-2023-32600 · Sourcecodester · Sourcecodester Best Courier Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best Courier Management System version 1.0 Description: A problematic issue was found, allowing for cross site scripting through the manipulation of the page argument with malicious input, such as alert1. This can be exploited...

6.1CVSS6.5AI score0.00608EPSS
Exploits1References4
osv
osv
added 2023/09/30 12:15 p.m.2 views

CVE-2023-5302

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Courier Management System 1.0. This issue affects some unknown processing of the component Manage Account Page. The manipulation of the argument First Name leads to cross site scripting. The attack may be...

5.4CVSS3.7AI score
Exploits0References3
nvd
nvd
added 2023/09/29 5:15 p.m.27 views

CVE-2023-5272

A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. This affects an unknown part of the file editparcel.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to...

8.8CVSS6.7AI score0.0062EPSS
Exploits1References3
osv
osv
added 2023/09/29 5:15 p.m.7 views

CVE-2023-5272

A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. This affects an unknown part of the file editparcel.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to...

8.8CVSS5.6AI score0.0062EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2023/09/29 4:31 p.m.15 views

CVE-2023-5272 SourceCodester Best Courier Management System GET Parameter edit_parcel.php sql injection

A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. This affects an unknown part of the file editparcel.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to...

5.5CVSS7.4AI score0.0062EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2023/09/29 4:0 p.m.18 views

CVE-2023-5271 SourceCodester Best Courier Management System edit_parcel.php sql injection

A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file editparcel.php. The manipulation of the argument email leads to sql injection. The exploit has been disclosed to the publ...

5.5CVSS7.3AI score0.0062EPSS
Exploits1References3
Rows per page
Query Builder