Lucene search
K

59 matches found

Prion
Prion
added 2023/02/27 12:15 p.m.21 views

Sql injection

A vulnerability classified as critical has been found in SourceCodester Doctors Appointment System 1.0. This affects an unknown part of the file create-account.php. The manipulation of the argument newemail leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS9AI score0.0076EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/02/27 11:8 a.m.19 views

CVE-2023-1058 SourceCodester Doctors Appointment System create-account.php sql injection

A vulnerability classified as critical has been found in SourceCodester Doctors Appointment System 1.0. This affects an unknown part of the file create-account.php. The manipulation of the argument newemail leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS9.2AI score0.0076EPSS
Exploits1References3
Veracode
Veracode
added 2022/04/29 5:51 a.m.12 views

Information Disclosure

shopware/shopware is vulnerable to information disclosure. The vulnerability exists in Account.php because multiple tokens requests are allowed and the generated tokens are not properly validated during a password reset which allows an attacker to gain access to user's email account and token...

7.5CVSS2.8AI score0.00812EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2022/01/21 4:15 p.m.13 views

CVE-2021-46307

An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php...

10CVSS0.01556EPSS
Exploits1References1
Prion
Prion
added 2022/01/21 4:15 p.m.12 views

Sql injection

An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php...

10CVSS9.8AI score0.01556EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/01/21 12:0 a.m.4 views

SourceCodester Online Examination System SQL注入漏洞

SourceCodester Projectworlds Online Examination System is an online examination system from SourceCodester, Inc. v1.0 contains a SQL injection vulnerability that stems from the failure of the eid parameter in the product's account.php page to properly filter special characters in user input data...

10CVSS6AI score0.01556EPSS
Exploits1References2
0day.today
0day.today
added 2022/01/10 12:0 a.m.233 views

Online Examination System Project 1.0 SQL Injection Vulnerability

Title: Online Examination System Project 1.0 SQL - Injections Author: nu11secur1ty Vendor: https://projectworlds.in/free-projects/php-projects/ Software: https://projectworlds.in/free-projects/php-projects/online-examination/ Description: The eid parameter in account.php from Online Examination...

0.2AI score
Exploits0
NVD
NVD
added 2021/05/24 1:15 p.m.11 views

CVE-2020-26006

Project Worlds Online Examination System 1.0 is affected by Cross Site Scripting XSS via account.php...

6.1CVSS0.00685EPSS
Exploits0References2
Prion
Prion
added 2021/05/24 1:15 p.m.13 views

Cross site scripting

Project Worlds Online Examination System 1.0 is affected by Cross Site Scripting XSS via account.php...

4.3CVSS6AI score0.00685EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/05/24 12:41 p.m.19 views

CVE-2020-26006

Project Worlds Online Examination System 1.0 is affected by Cross Site Scripting XSS via account.php...

6.1AI score0.00685EPSS
Exploits0References2
CVE
CVE
added 2021/05/24 12:41 p.m.38 views

CVE-2020-26006

Project Worlds Online Examination System 1.0 is vulnerable to Cross-Site Scripting (XSS) via account.php. Multiple sources (NVD CVE-2020-26006; CNVD/CNNVD entries) confirm an XSS vulnerability in this version, enabling injection of malicious JavaScript to execute in a user’s browser and potential...

6.1CVSS6AI score0.00685EPSS
Exploits0References2Affected Software1
0day.today
0day.today
added 2020/05/19 12:0 a.m.45 views

Online Examination System 1.0 - (eid) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Online Examination System 1.0 - 'eid' SQL Injection Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/14210/online-examination-system-project-using-phpmysql.html Software Link:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/05/18 12:0 a.m.178 views

Online Examination System 1.0 SQL Injection

Exploit Title: Online Examination System 1.0 - 'eid' SQL Injection Google Dork: N/A Date: 2020-05-16 Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/14210/online-examination-system-project-using-phpmysql.html Software Link:...

7.4AI score
Exploits0
CVE
CVE
added 2019/02/23 9:0 p.m.49 views

CVE-2019-9062

The CVE-2019-9062 entry concerns PHP Scripts Mall Online Food Ordering Script version 1.0, where a Cross-Site Request Forgery (CSRF) exists in my-account.php. The available connected documents corroborate a CSRF vulnerability in that file, enabling unauthorized state-changing requests. PT-2019-19...

8CVSS8AI score0.00545EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/02/23 9:0 p.m.20 views

CVE-2019-9062

PHP Scripts Mall Online Food Ordering Script 1.0 has Cross-Site Request Forgery CSRF in my-account.php...

8.1AI score0.00545EPSS
Exploits1References1
CVE
CVE
added 2018/11/09 7:0 p.m.92 views

CVE-2018-19136

DomainMOD 4.11.01 is vulnerable to reflected cross-site scripting through assets/edit/registrar-account.php?raid=… due to insufficient input sanitization of the raid parameter. This can allow an attacker to execute arbitrary JavaScript in a victim’s browser, potentially enabling session hijacking...

6.1CVSS6.1AI score0.06653EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2018/05/24 7:29 a.m.23 views

CVE-2018-11404

DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter...

6.1CVSS6.1AI score
Exploits0References2
Openbugbounty
Openbugbounty
added 2018/02/02 6:50 a.m.7 views

womenswords.com XSS vulnerability

Open Bug Bounty ID: OBB-551366 Description| Value ---|--- Affected Website:| womenswords.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/01/31 6:24 p.m.10 views

gastrojfh.com.au XSS vulnerability

Open Bug Bounty ID: OBB-550421 Description| Value ---|--- Affected Website:| gastrojfh.com.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/01/31 6:20 p.m.15 views

domesticviolence.com.au XSS vulnerability

Open Bug Bounty ID: OBB-550414 Description| Value ---|--- Affected Website:| domesticviolence.com.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.2AI score
Exploits0
Rows per page
Query Builder