phpgurukul Teacher Subject Allocation Management System 安全漏洞

Teacher Subject Allocation Management System a teacher subject allocation management system. Teacher Subject Allocation Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the adminname and email...

CVE-2023-31934

Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php...

CVE-2023-31934

Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php...

Rail Pass Management System 跨站脚本漏洞

Rail Pass Management System is a pass management system. A cross-site scripting vulnerability exists in Rail Pass Management System version v.1.0 that could allow a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php...

PT-2023-23532 · Unknown · Rail Pass Management System

Name of the Vulnerable Software and Affected Versions: Rail Pass Management System version 1.0 Description: A Cross Site Scripting issue allows a remote attacker to obtain sensitive information via the adminname parameter of "admin-profile.php". Recommendations: For Rail Pass Management System...

CVE-2023-3888

A vulnerability was found in Campcodes Beauty Salon Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack may be...

CVE-2023-3874

CVE-2023-3874 affects Campcodes Beauty Salon Management System 1.0. The vulnerability is an SQL injection in the unknown function of the file /admin/admin-profile.php, triggered by manipulating the adminname parameter. It is exploitable remotely, with multiple sources indicating the exploit has b...

Campcodes Beauty Salon Management System 跨站脚本漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes, Inc. A cross-site scripting vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which stems from unknown processing in /admin/admin-profile.php, leading to cross-site scripting v...

PT-2023-26659 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A vulnerability was found in the system, affecting some unknown functionality of the file /admin/admin-profile.php. The manipulation of the adminname argument leads to cross si...

PT-2023-26579 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown function of the file /admin/admin-profile.php. The manipulation of the adminname argument leads to sql injection...

Cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Online Student Management System 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument adminname leads to cross site scripting. It is possible to launch the attack remotely. The...

Student Management System 跨站脚本漏洞

Student Management System is a simple web-based student management software from the individual developer Sk.Amir Hamza, Bangladesh. A cross-site scripting vulnerability exists in SourceCodester Online Student Management System version 1.0, which stems from incorrect manipulation of the parameter...

PT-2023-16954 · Sourcecodester · Sourcecodester Online Student Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student Management System version 1.0 Description: A vulnerability has been found in the SourceCodester Online Student Management System. The issue is related to an unknown function of the file profile.php, where the...

Hospital Management System SQL Injection Vulnerability (CNVD-2022-83601)

Hospital Management System is a hospital management system. A SQL injection vulnerability exists in Hospital Management System v1.0, which includes modules for patient information management, appointment services, and financial management. The vulnerability is related to the lack of validation of...

CVE-2022-27413

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the adminname parameter in admin.php...

CVE-2022-27413

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the adminname parameter in admin.php...

Hospital Management System SQL注入漏洞

Hospital Management System is a hospital management system. A SQL injection vulnerability exists in Hospital Management System v1.0, which includes modules for patient information management, appointment services, and financial management. The vulnerability is related to the lack of validation of...

Intelligent core multi-language enterprise website management system 4. 1. 0 SQL injection and upload vulnerabilities-vulnerability warning-the black bar safety net

Vulnerability type: SQL injection Test version: the intelligent core multi-language enterprise website management system 4. 1. 0 Editor Version: KindEditor 4.0.3 Vulnerability description: ① Injection vulnerability Vulnerability file:\Cn\About. asp & \Include\Bottom. asp The exploit: the Add Tabl...

Kaseya 6.2.0.0 Cross Site Scripting

Summary The Kaseya version 6.2.0.0 web interface and possibly other versions is vulnerable to Cross-Site Scripting in the "adminName" variable. 2. Description By submitting malicious input such as the following, it is possible to render javascript in the security context of the Kaseya server:...

sk enterprise website management system batch SQL injection vulnerability-vulnerability warning-the black bar safety net

The first step: open GOOGLE and search inurl:/Html/About. sk. asp? ID=1 3 Second step: put the search to the injection point into Ming the kid, add skadmin table and adminname, password field The third step: the default backend is the server...