CVE-2024-7667

A vulnerability, which was classified as critical, was found in SourceCodester Car Driving School Management System 1.0. This affects the function deleteusers of the file User.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-7667

CVE-2024-7667 affects SourceCodester Car Driving School Management System 1.0, specifically the delete_users function in User.php. The vulnerability arises from improper handling of the id argument, enabling SQL injection. Exploitation can be performed remotely, and public disclosures exist. Conn...

CVE-2024-7667 SourceCodester Car Driving School Management System User.php delete_users sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Car Driving School Management System 1.0. This affects the function deleteusers of the file User.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-6732 SourceCodester Student Study Center Desk Management System Users.php sql injection

A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. This vulnerability affects unknown code of the file /sscdms/classes/Users.php?f=save. The manipulation of the argument id leads to sql injection. The attack can be initiated remotel...

CVE-2024-33247

Sourcecodester Employee Task Management System v1.0 is vulnerable to SQL Injection via admin-manage-user.php...

PT-2024-23682 · Semcms · Semcms

Name of the Vulnerable Software and Affected Versions: SEMCMS version 4.8 Description: The issue allows a remote attacker to obtain sensitive information. This is achieved via the ID parameter in the SEMCMS User.php component. Recommendations: For SEMCMS version 4.8, avoid using the ID parameter ...

CVE-2024-28556

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin-manage-user.php...

CVE-2024-28556

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin-manage-user.php...

CVE-2024-3315 SourceCodester Computer Laboratory Management System user.php sql injection

A vulnerability was found in SourceCodester Computer Laboratory Management System 1.0. It has been classified as critical. Affected is an unknown function of the file classes/user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-3223

CVE-2024-3223 affects SourceCodester PHP Task Management System 1.0. The vulnerability resides in the unknown function within the file admin-manage-user.php , where manipulating the parameter admin_id leads to SQL injection . It can be exploited remotely, and public disclosures exist. Connected s...

CVE-2024-3223 SourceCodester PHP Task Management System admin-manage-user.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester PHP Task Management System 1.0. Affected is an unknown function of the file admin-manage-user.php. The manipulation of the argument adminid leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-3223 SourceCodester PHP Task Management System admin-manage-user.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester PHP Task Management System 1.0. Affected is an unknown function of the file admin-manage-user.php. The manipulation of the argument adminid leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-24050

Cross Site Scripting XSS vulnerability in Sourcecodester Workout Journal App 1.0 allows attackers to run arbitrary code via parameters firstname and lastname in /add-user.php...

CVE-2024-24050

Cross Site Scripting XSS vulnerability in Sourcecodester Workout Journal App 1.0 allows attackers to run arbitrary code via parameters firstname and lastname in /add-user.php...

CVE-2024-24050

Cross Site Scripting XSS vulnerability in Sourcecodester Workout Journal App 1.0 allows attackers to run arbitrary code via parameters firstname and lastname in /add-user.php...

CVE-2024-2569 SourceCodester Employee Task Management System admin-manage-user.php redirect

A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin-manage-user.php. The manipulation leads to execution after redirect. The attack may be launched remotely. The exploit...

CVE-2024-2569

CVE-2024-2569 affects SourceCodester Employee Task Management System 1.0, with a vulnerability in the file /admin-manage-user.php. The issue enables execution after redirect and can be exploited remotely; the exploit has been disclosed publicly. Multiple connected sources corroborate the impact a...

CVE-2024-2569 SourceCodester Employee Task Management System admin-manage-user.php redirect

A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin-manage-user.php. The manipulation leads to execution after redirect. The attack may be launched remotely. The exploit...

BIT-PHPLIST-2020-13827

phpList before 3.5.4 allows XSS via /lists/admin/user.php and /lists/admin/users.php...

CVE-2024-1198

A vulnerability, which was classified as critical, was found in openBI up to 6.0.3. Affected is the function addxinzhi of the file application/controllers/User.php of the component Phar Handler. The manipulation of the argument outimgurl leads to deserialization. It is possible to launch the atta...