6 matches found
Online Leave Management System SQL-Injection-Bypass-Authentication
Description: The OLMS – PHP by: oretnom23 v1.0 is vulnerable in the application /leavesystem/classes/Login.php from SQL-Injection-Bypass-Authentication m0re info: . The parameter username from the login form is not protected correctly and there is no security and escaping from malicious payloads...
Ship Ferry Ticket Reservation System v1.0 SQL-Injection-Bypass-Authentication
Description: The Ship/Ferry Ticket Reservation System v1.0 is vulnerable in the application /shipticketing/classes/Login.php from SQL-Injection-Bypass-Authentication. The parameter username from the login form is not protected correctly and there is no security and escaping from malicious payload...
Online Leave Management System 1.0 SQL Injection Vulnerability
Online Leave Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Exploit Title: OLMS - PHP by: oretnom23 v1.0 SQL-Injection-Bypass-Authentication in /leavesystem/classes/Login.php. Author: nu11secur1ty Testing and Debugging:...
COVID-19 Contact Tracing System With QR Code Scanning 1.0 SQL Injection Exploit
COVID-19 Contact Tracing System web app with QR Code Scanning version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Exploit Title: Covid-19 Contact Tracing System Web App with QR Code Scanning CTS-QR by: oretnom23 v1.0 remote...
Ship Ferry Ticket Reservation System 1.0 SQL Injection
Exploit Title: Ship Ferry Ticket Reservation System v1.0 SQL-Injection-Bypass-Authentication in /shipticketing/classes/Login.php. Author: nu11secur1ty Testing and Debugging: nu11secur1ty Date: 08.30.2021 Vendor:...
SQL Injection - bypass login on B&E Tracker (by: oretnom23 ) v1.0
Description: The B&E Tracker by: oretnom23 v1.0 is vulnerable in the application /expensebudget/classes/Login.php which is called from /expensebudget/dist/js/script.js app. The parameter username from the login form is not protected correctly and there is no security and escaping from malicious...