PT-2024-25128 · Sourcecodester · Sourcecodester Computer Laboratory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Computer Laboratory Management System version 1.0 Description: A critical issue affects the processing of the file /classes/Users.php, leading to sql injection. The attack may be initiated remotely. Recommendations: For...

SourceCodester Computer Laboratory Management System 授权问题漏洞

Computer Laboratory Management System is a computer laboratory management system. An authorization issue vulnerability exists in SourceCodester Computer Laboratory Management System version 1.0, which stems from a security issue in the saveusers function in /classes/Users.php, which results in...

CVE-2024-2535

MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 is affected by a Cross-Site Scripting vulnerability in the /admin/users.php script, triggered by a manipulated id parameter. The issue is a reflected XSS affecting unknown code paths, with remote exploitation possible and public disclosu...

CVE-2024-2535 MAGESH-K21 Online-College-Event-Hall-Reservation-System users.php cross site scripting

A vulnerability has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/users.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotel...

CVE-2024-2533 MAGESH-K21 Online-College-Event-Hall-Reservation-System update-users.php cross site scripting

A vulnerability, which was classified as problematic, has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. Affected by this issue is some unknown functionality of the file /admin/update-users.php. The manipulation of the argument id leads to cross site scripting. The...

CVE-2024-2533 MAGESH-K21 Online-College-Event-Hall-Reservation-System update-users.php cross site scripting

A vulnerability, which was classified as problematic, has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. Affected by this issue is some unknown functionality of the file /admin/update-users.php. The manipulation of the argument id leads to cross site scripting. The...

Online-College-Event-Hall-Reservation-System SQL Injection Vulnerability

Online-College-Event-Hall-Reservation-System is an online college event hall reservation system by Magesh K individual developer. Designed to automate the hall booking process to eliminate manual logging and increase efficiency. Online-College-Event-Hall-Reservation-System suffers from a SQL...

BIT-PHPLIST-2020-13827

phpList before 3.5.4 allows XSS via /lists/admin/user.php and /lists/admin/users.php...

Online Mobile Store Management System Code Issue Vulnerability

Online Mobile Store Management System is an online mobile store management system by Carlo Montero Personal Developer. A code issue exists in version 1.0 of the Online Mobile Store Management System that stems from an unrestricted upload issue in the /classes/Users.php file...

CVE-2024-1823

A vulnerability classified as critical was found in CodeAstro Simple Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file users.php of the component Backend. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit h...

Improper access control

A vulnerability classified as critical was found in CodeAstro Simple Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file users.php of the component Backend. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit h...

CVE-2024-1823

CVE-2024-1823 affects CodeAstro Simple Voting System 1.0, specifically the Backend users.php file. The root cause is improper access controls on this file, enabling a remote attack. Multiple sources confirm the vulnerability allows unauthorized access, and exploitation details have been publicly ...

CVE-2024-1823 CodeAstro Simple Voting System Backend users.php access control

A vulnerability classified as critical was found in CodeAstro Simple Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file users.php of the component Backend. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit h...

CVE-2024-1823 CodeAstro Simple Voting System Backend users.php access control

A vulnerability classified as critical was found in CodeAstro Simple Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file users.php of the component Backend. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit h...

PT-2024-18338 · Codeastro · Codeastro Simple Voting System

Name of the Vulnerable Software and Affected Versions: CodeAstro Simple Voting System version 1.0 Description: A critical vulnerability was found in the CodeAstro Simple Voting System, affecting an unknown functionality of the file users.php of the component Backend. This vulnerability leads to...

CodeAstro Simple Voting System Access Control Error Vulnerability

CodeAstro Simple Voting System is a simple voting system from CodeAstro. An Access Control Error vulnerability exists in CodeAstro Simple Voting System version 1.0, which stems from the file users.php that causes incorrect access control...

CVE-2023-48986

Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...

CVE-2023-48986

Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...

CVE-2024-0497 Campcodes Student Information System sql injection

A vulnerability was found in Campcodes Student Information System 1.0. It has been classified as critical. Affected is an unknown function of the file /classes/Users.php?f=save. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2023-7140

A vulnerability was found in code-projects Client Details System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/manage-users.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be...