Jettweb Hazir Rent A Car Scripti SQL注入漏洞

Jettweb Hazir Rent A Car Scripti is a car rental website system operated by the Turkish company Jettweb. The Jettweb Hazir Rent A Car Scripti V4 version contains an SQL injection vulnerability. This vulnerability stems from the tur, id, and ozellikdil parameters at the admin/index.php endpoint,...

itsourcecode Event Management System SQL注入漏洞

itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the file /admin/index.php,...

PT-2025-6866 · Unknown · Prestashop

Name of the Vulnerable Software and Affected Versions: Prestashop version 8.1.7 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability due to the lack of proper validation of user input. This affects the link parameter through the /index.php endpoint, specifically in...

CVE-2024-4720

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /model/approvepettycash.php. The manipulation of the argument adminindex leads to cross site scripting. The...

Campcodes Complete Web-Based School Management System 跨站脚本漏洞

Campcodes Complete Web-Based School Management System is a Web-based school management system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Complete Web-Based School Management System, which originates from a cross-site scripting vulnerability in...

Campcodes Online Job Finder System Cross-Site Scripting Vulnerability

Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which stems from a cross-site scripting vulnerability in the view parameter of the /admin/employee/index.php...

CVE-2023-2349

A vulnerability classified as problematic has been found in SourceCodester Service Provider Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument page leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2022-30776

atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter...

Atmail 跨站脚本漏洞

Atmail is an email hosting service from Atmail. Atmail version 6.5.0 contains a cross-site scripting vulnerability that originates from an incorrect parameter in index.php/admin/index/ and can be exploited to execute JavaScript code...