Lucene search
+L

288 matches found

OSV
OSV
added 2024/07/31 3:15 a.m.4 views

CVE-2024-7283

A vulnerability, which was classified as critical, has been found in SourceCodester Lot Reservation Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

8.8CVSS5.7AI score0.0056EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/07/28 12:0 a.m.9 views

PT-2024-38130 · Unknown · Sourcecodester School Fees Payment System

Name of the Vulnerable Software and Affected Versions: SourceCodester School Fees Payment System version 1.0 Description: A critical issue affects some unknown functionality of the file /manage user.php. The manipulation of the id argument leads to sql injection. The attack can be launched...

8.8CVSS7.6AI score0.00532EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/07/19 12:0 a.m.4 views

PT-2024-37946 · Unknown · Sourcecodester Record Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Record Management System version 1.0 Description: A critical issue has been found in the SourceCodester Record Management System, affecting the file view info user.php. The manipulation of the id argument leads to SQL injection...

8.8CVSS8AI score0.00566EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/06/16 12:0 a.m.9 views

PT-2024-37338 · Unknown · Itsourcecode Farm Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Gym Management System version 1.0 Description: A critical issue was found in the itsourcecode Gym Management System, affecting an unknown functionality of the file manage user.php. The manipulation of the id argument leads to SQL...

8.8CVSS8.1AI score0.00476EPSS
Exploits1References7
NVD
NVD
added 2024/05/30 9:15 p.m.15 views

CVE-2024-36119

Statamic is a, Laravel + Git powered CMS designed for building websites. In affected versions users registering via the user:registerform tag will have their password confirmation stored in plain text in their user file. This only affects sites matching all of the following conditions: 1. Running...

1.8CVSS3.5AI score0.00137EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/26 12:0 a.m.3 views

PT-2024-35796 · Sourcecodester · Best House Rental Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best House Rental Management System version 1.0 Description: A critical issue was found in the manage user.php file, where the manipulation of the id argument leads to sql injection. This issue can be exploited remotely...

6.5CVSS7.7AI score0.00473EPSS
Exploits1References7
OSV
OSV
added 2024/05/22 9:15 a.m.5 views

CVE-2024-5031

The Memberpress plugin for WordPress is vulnerable to Blind Server-Side Request Forgery in all versions up to, and including, 1.11.29 via the 'mepr-user-file' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to make web requests to arbitrary...

6.4CVSS5.8AI score0.00294EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/22 1:25 a.m.6 views

WordPress MemberPress plugin <= 1.11.29 - Authenticated (Contributor+) Blind Server-Side Request Forgery via mepr-user-file Shortcode vulnerability

Authenticated Contributor+ Blind Server-Side Request Forgery via mepr-user-file Shortcode vulnerability discovered by stealthcopter in WordPress Plugin MemberPress versions = 1.11.29...

8.5CVSS7.1AI score0.00294EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/05/14 3:45 p.m.4 views

CVE-2024-4817

A vulnerability has been found in Campcodes Online Laundry Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file manageuser.php of the component HTTP Request Parameter Handler. The manipulation of the argument id leads to improper control of resourc...

8.8CVSS5.5AI score0.00922EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/05/12 12:0 a.m.13 views

PT-2024-32958 · Unknown · Kashipara College Management System

Name of the Vulnerable Software and Affected Versions: Kashipara College Management System version 1.0 Description: A critical issue has been found in the Kashipara College Management System, affecting some unknown functionality of the file edit user.php. The manipulation of the id argument leads...

8.8CVSS7.5AI score0.00819EPSS
Exploits1References7
OSV
OSV
added 2024/04/10 4:15 a.m.10 views

CVE-2024-3537

A vulnerability was found in Campcodes Church Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/adminuser.php. The manipulation of the argument firstname leads to sql injection. The attack may be initiated remotely. The exploit has bee...

8.8CVSS5.8AI score0.00882EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/04/04 12:0 a.m.7 views

PT-2024-25134 · Sourcecodester · Sourcecodester Computer Laboratory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Computer Laboratory Management System version 1.0 Description: A critical issue was found in the SourceCodester Computer Laboratory Management System, affecting an unknown function of the file classes/user.php. The manipulation...

9.8CVSS6.9AI score0.00716EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/03/28 12:0 a.m.6 views

PT-2024-23346 · Sourcecodester · Sourcecodester Simple Subscription Website

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Subscription Website version 1.0 Description: A critical issue affects the processing of the file manage user.php, where the manipulation of the id argument leads to SQL injection. The attack can be initiated remotely. T...

9.1CVSS8.4AI score0.00609EPSS
Exploits1References7
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.7 views

Sourcecodester Workout Journal App 跨站脚本漏洞

Workout Journal App is workout journal application. A security vulnerability exists in version 1.0 of the Sourcecodester Workout Journal App that stems from a cross-site scripting XSS vulnerability in the parameters firstname and lastname in the file /add-user.php...

4.7CVSS4.6AI score0.00443EPSS
Exploits4References3
Vulnrichment
Vulnrichment
added 2024/01/31 7:0 p.m.7 views

CVE-2024-1111 SourceCodester QR Code Login System add-user.php cross site scripting

A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Login System 1.0. Affected by this issue is some unknown functionality of the file add-user.php. The manipulation of the argument qr-code leads to cross site scripting. The attack may be launched...

5CVSS4.8AI score0.00415EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/31 12:0 a.m.7 views

PT-2024-16770

Name of the Vulnerable Software and Affected Versions SourceCodester QR Code Login System version 1.0 Description A vulnerability has been found in the SourceCodester QR Code Login System, affecting some unknown functionality of the file add-user.php. The manipulation of the qr-code argument lead...

6.1CVSS4.9AI score0.00415EPSS
Exploits0References8
OSV
OSV
added 2024/01/12 10:15 p.m.9 views

CVE-2024-0472

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file modifyuser.php. The manipulation of the argument mname leads to information disclosure. The exploit has been disclosed to the public...

7.5CVSS4.8AI score0.00558EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/01 12:0 a.m.5 views

RRJ Nueva Ecija Engineer Online Portal Cross-Site Scripting Vulnerability

RRJ Nueva Ecija Engineer Online Portal is an online portal for engineers from RRJ Nueva Ecija. A cross-site scripting vulnerability exists in RRJ Nueva Ecija Engineer Online Portal version 1.0, which stems from the parameter Firstname/Lastname/Username in the file /admin/adminuser.php that causes...

4.8CVSS6AI score0.00562EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/12/17 10:31 a.m.4 views

CVE-2023-6898 SourceCodester Best Courier Management System manage_user.php sql injection

A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function of the file manageuser.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The...

5.5CVSS9.8AI score0.00649EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/12/17 12:0 a.m.5 views

PT-2023-32807 · Sourcecodester · Sourcecodester Best Courier Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best Courier Management System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file manage user.php. The manipulation of the id argument leads to sql injection. The...

9.8CVSS7.6AI score0.00649EPSS
Exploits1References7
Rows per page
Query Builder