169 matches found
CVE-2024-2556 SourceCodester Employee Task Management System attendance-info.php sql injection
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file attendance-info.php. The manipulation of the argument userid leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2024-2556
The CVE-2024-2556 entry concerns SourceCodester Employee Task Management System 1.0. Affected component: attendance-info.php. Root cause: manipulation of the user_id parameter leads to an SQL injection vulnerability that can be exploited remotely. Exploit information is publicly disclosed per sou...
CVE-2024-2555
A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file update-admin.php. The manipulation of the argument adminid leads to sql injection. The attack may be launched remotely. The...
CVE-2024-2555 SourceCodester Employee Task Management System update-admin.php sql injection
A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file update-admin.php. The manipulation of the argument adminid leads to sql injection. The attack may be launched remotely. The...
CVE-2024-2555
CVE-2024-2555 affects SourceCodester Employee Task Management System 1.0, with a vulnerability in the file update-admin.php. The manipulation of the argument admin_id can lead to an SQL injection, exploitable remotely, and the exploit has been disclosed publicly. Multiple sources describe the imp...
CVE-2024-2554
A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file update-employee.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...
CVE-2024-2554 SourceCodester Employee Task Management System update-employee.php sql injection
A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file update-employee.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...
CVE-2024-2554
CVE-2024-2554 affects SourceCodester Employee Task Management System 1.0, where an SQL injection is caused by manipulating the parameter admin_id in the file update-employee.php . The vulnerability is exploitable remotely and can impact confidentiality, integrity, and availability (per sources ci...
CVE-2024-2554 SourceCodester Employee Task Management System update-employee.php sql injection
A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file update-employee.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...
CVE-2024-1199
A vulnerability has been found in CodeAstro Employee Task Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file \employee-tasks-php\attendance-info.php. The manipulation of the argument atenid leads to denial of service. The...
CVE-2024-1199 CodeAstro Employee Task Management System attendance-info.php denial of service
A vulnerability has been found in CodeAstro Employee Task Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file \employee-tasks-php\attendance-info.php. The manipulation of the argument atenid leads to denial of service. The...
CVE-2024-1199
CodeAstro Employee Task Management System 1.0 contains a vulnerability in the file \employee-tasks-php\attendance-info.php where manipulating the aten_id parameter leads to a denial of service. The issue can be triggered remotely and has publicly disclosed exploitation per CVE-2024-1199 entries. ...
CVE-2023-43944
A Stored Cross Site Scripting XSS vulnerability was found in SourceCodester Task Management System 1.0. It allows attackers to execute arbitrary code via parameter field in index.php?page=projectlist...
Cross site scripting
A Stored Cross Site Scripting XSS vulnerability was found in SourceCodester Task Management System 1.0. It allows attackers to execute arbitrary code via parameter field in index.php?page=projectlist...
SourceCodester Task Management System Cross-Site Scripting Vulnerability
SourceCodester Task Management System is a task management system. A cross-site scripting vulnerability exists in SourceCodester Task Management System version 1.0. An attacker can exploit this vulnerability to execute arbitrary code via the parameter field in index.php?page=projectlist...
CVE-2023-43944
CVE-2023-43944 describes a stored Cross-Site Scripting (XSS) vulnerability in SourceCodester Task Management System 1.0. The issue is triggered via the input in the parameter field of the endpoint index.php?page=project_list. Affected component is the web application’s project list handling; root...
PT-2023-29044
Name of the Vulnerable Software and Affected Versions SourceCodester Task Management System version 1.0 Description A Stored Cross Site Scripting XSS issue was found in the software. It allows attackers to execute arbitrary code via a parameter field in the "index.php?page=project list" API...
CVE-2023-43944
A Stored Cross Site Scripting XSS vulnerability was found in SourceCodester Task Management System 1.0. It allows attackers to execute arbitrary code via parameter field in index.php?page=projectlist...
CVE-2023-43944
A Stored Cross Site Scripting XSS vulnerability was found in SourceCodester Task Management System 1.0. It allows attackers to execute arbitrary code via parameter field in index.php?page=projectlist...
Employee Task Management System v1.0 - SQL Injection on edit-task.php
Exploit Title: Employee Task Management System v1.0 - SQL Injection on edit-task.php Exploit Author: Muhammad Navaid Zafar Ansari Date: 17 February 2023 CVE Assigned: CVE-2023-0902 mitre.org, nvd.nist.org Author: Muhammad Navaid Zafar Ansari Vendor Homepage: https://www.sourcecodester.com Softwar...