CVE-2024-0184

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/editteacher.php of the component Add Enginer. The manipulation of the argument Firstname/Lastname leads to cross site scripting...

CVE-2023-43740

Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of adminedit.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application...

Unrestricted file upload

Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of adminedit.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application...

CVE-2023-3890

A vulnerability classified as problematic has been found in Campcodes Beauty Salon Management System 1.0. This affects an unknown part of the file /admin/edit-accepted-appointment.php. The manipulation of the argument id leads to cross site scripting. It is possible to initiate the attack remotel...

Campcodes Beauty Salon Management System 跨站脚本漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes, Inc. A cross-site scripting vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which stems from unknown code in /admin/editproduct.php that causes cross-site scripting via the...

Campcodes Beauty Salon Management System 跨站脚本漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes, Inc. A cross-site scripting vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which stems from unknown processing in /admin/editcategory.php that results in cross-site scriptin...

PT-2023-26630 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown processing of the file /admin/edit category.php. The manipulation of the argument id...

PT-2023-26622 · Campcodes · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A problematic issue has been identified, affecting the /admin/edit product.php file. The manipulation of the id argument leads to cross-site scripting. This issue can be...

Campcodes Beauty Salon Management System SQL注入漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which originates from an unknown function in /admin/edit-accepted-appointment.php, which results in a sql...

PT-2023-26611 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file /admin/edit-accepted-appointment.php. The manipulation of the contactno argument...

Campcodes Beauty Salon Management System SQL注入漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which originates from an unknown section of admin/edit-services.php that causes a sql injection via the...

Campcodes Beauty Salon Management System SQL注入漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which originates from an unknown section of the file admin/editcategory.php, which results in a sql injection...

PT-2023-26573 · Campcodes · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical vulnerability has been found in the Campcodes Beauty Salon Management System. This issue affects the file /admin/edit category.php and is related to the manipulation...

PT-2023-26574 · Campcodes · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical issue was found in the system, affecting the file /admin/edit-services.php. The manipulation of the editid argument leads to SQL injection. The attack can be initiat...

CVE-2023-3473

A vulnerability, which was classified as critical, was found in Campcodes Retro Cellphone Online Store 1.0. Affected is an unknown function of the file /admin/editproduct.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The explo...

PT-2023-21638 · Sourcecodester · Sourcecodester Class Scheduling System

Name of the Vulnerable Software and Affected Versions: SourceCodester Class Scheduling System version 1.0 Description: A critical issue was found in the SourceCodester Class Scheduling System, affecting an unknown functionality of the file /admin/edit subject.php, specifically the GET Parameter...

SourceCodester Class Scheduling System SQL注入漏洞

Class Scheduling System is a class scheduling system by jkev individual developer. A SQL injection vulnerability exists in SourceCodester Class Scheduling System version 1.0, which is caused by an unknown function in the file /admin/editsubject.php in the component GET Parameter Handler, which...

CVE-2023-1569

A vulnerability classified as problematic was found in SourceCodester E-Commerce System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/user/controller.php?action=edit. The manipulation of the argument UNAME with the input alert'1' leads to cross site scripting...

CVE-2023-1061

A vulnerability, which was classified as critical, has been found in SourceCodester Doctors Appointment System 1.0. This issue affects some unknown processing of the file /admin/edit-doc.php. The manipulation of the argument email/oldmail leads to sql injection. The attack may be initiated...

SourceCodester Doctor Appointment System SQL注入漏洞

SourceCodester Doctor Appointment System is an application from SourceCodester USA. It provides an appointment scheduling feature. A SQL injection vulnerability exists in SourceCodester Doctors Appointment System version 1.0, which originates from an unknown function in the file /admin/edit-doc.p...