code-projects Automated Voting System SQL注入漏洞

Automated Voting System is an automated voting system. Automated Voting System suffers from a SQL injection vulnerability that stems from the lack of validation of the parameter firstname in file /admin/addcandidatemodal.php for externally entered SQL statements. An attacker can exploit this...

CVE-2024-3472

The Modal Window WordPress plugin before 5.3.10 does not have CSRF check in place when bulk deleting modals, which could allow attackers to make a logged in admin delete them via a CSRF attack...

CVE-2023-3681

A vulnerability classified as problematic was found in Campcodes Retro Cellphone Online Store 1.0. This vulnerability affects unknown code of the file /admin/modaladdproduct.php. The manipulation of the argument description leads to cross site scripting. The attack can be initiated remotely. The...

PT-2023-25701 · Campcodes · Campcodes Retro Cellphone Online Store

Name of the Vulnerable Software and Affected Versions: Campcodes Retro Cellphone Online Store version 1.0 Description: A problematic issue was found in the file /admin/modal add product.php, where the manipulation of the description argument leads to cross-site scripting. The attack can be...

CVE-2023-3660

A vulnerability was found in Campcodes Retro Cellphone Online Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/addusermodal.php. The manipulation of the argument un leads to cross site scripting. The attack may be launched remotely...