CVE-2023-1591

A vulnerability classified as critical has been found in SourceCodester Automatic Question Paper Generator System 1.0. This affects an unknown part of the file classes/Users.php?f=saveruser. The manipulation of the argument id/email leads to sql injection. It is possible to initiate the attack...

Sql injection

A vulnerability classified as critical has been found in SourceCodester Automatic Question Paper Generator System 1.0. This affects an unknown part of the file classes/Users.php?f=saveruser. The manipulation of the argument id/email leads to sql injection. It is possible to initiate the attack...

CVE-2023-1591 SourceCodester Automatic Question Paper Generator System sql injection

A vulnerability classified as critical has been found in SourceCodester Automatic Question Paper Generator System 1.0. This affects an unknown part of the file classes/Users.php?f=saveruser. The manipulation of the argument id/email leads to sql injection. It is possible to initiate the attack...

CVE-2023-1591

The CVE-2023-1591 entry concerns a SQL injection in SourceCodester Automatic Question Paper Generator System 1.0. Affected component: the file classes/Users.php?f=save_ruser. The vulnerability is triggered by manipulating the id/email parameters, with remote initial access described as possible i...

Automatic Question Paper Generator System 跨站脚本漏洞

Automatic Question Paper Generator System is an automatic question paper generator system by Carlo Montero Personal Developer. A cross-site scripting vulnerability exists in SourceCodester Automatic Question Paper Generator System version 1.0, which stems from unknown handling of the file...

Sql injection

A vulnerability classified as critical was found in SourceCodester Automatic Question Paper Generator System 1.0. This vulnerability affects unknown code of the file users/questionpapers/managequestionpaper.php of the component GET Parameter Handler. The manipulation of the argument id leads to s...

CVE-2023-1474

CVE-2023-1474 affects SourceCodester Automatic Question Paper Generator System 1.0, specifically the GET Parameter Handler in users/question_papers/manage_question_paper.php. The root cause is improper handling of the id parameter, enabling SQL injection remotely; exploits have been disclosed pub...

CVE-2023-1441

A vulnerability has been found in SourceCodester Automatic Question Paper Generator System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/courses/viewcourse.php of the component GET Parameter Handler. The manipulation of the argument i...

CVE-2023-1441 SourceCodester Automatic Question Paper Generator System GET Parameter view_course.php sql injection

A vulnerability has been found in SourceCodester Automatic Question Paper Generator System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/courses/viewcourse.php of the component GET Parameter Handler. The manipulation of the argument i...

CVE-2023-1441

CVE-2023-1441 affects SourceCodester Automatic Question Paper Generator System 1.0, impacting the GET Parameter Handler in admin/courses/view_course.php. The root cause is a vulnerability in the id parameter that enables SQL injection, allowing remote exploitation without user interaction. Multip...

CVE-2023-1440

CVE-2023-1440 affects SourceCodester Automatic Question Paper Generator System 1.0, specifically the GET Parameter Handler in the file users/user/manage_user.php. The vulnerability arises from manipulation of the id argument, resulting in SQL injection. It can be exploited remotely, and public di...

SourceCodester Automatic Question Paper Generator System SQL注入漏洞

Automatic Question Paper Generator System is an automatic question paper generator system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in SourceCodester Automatic Question Paper Generator System version 1.0, which originates from a SQL injection vulnerability found in...

Security Updates for Microsoft Excel Products C2R (March 2023)

The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - A spoofing vulnerability. CVE-2023-23398 - A remote code execution vulnerability. CVE-2023-23399 Note that Nessus has not tested for these issues but has instead relied only ...

[SECURITY] Fedora 38 Update: k3b-22.12.3-2.fc38

K3b provides a comfortable user interface to perform most CD/DVD burning tasks. While the experienced user can take influence in all steps of the burning process the beginner may find comfort in the automatic settings and the reasonable k3b defaults which allow a quick start...

Apache Dubbo code issue vulnerability (CNVD-2023-23551)

Apache Dubbo is a lightweight Java-based RPC remote procedure call framework from the Apache Foundation in the United States. The product provides interface-based remote calling, fault tolerance and load balancing, and automatic service registration and discovery.A security vulnerability exists i...

Fedora: Security Advisory for caddy (FEDORA-2023-a258bed79b)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: caddy-2.4.6-6.fc36

Caddy is the web server with automatic HTTPS...

michiganautomatic.com Cross Site Scripting vulnerability OBB-3213226

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

EulerOS 2.0 SP9 : git (EulerOS-SA-2023-1441)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Git is distributed revision control system. gitattributes are a mechanism to allow defining attributes for paths. These attributes can be defined b...

K15939: pl_tree.php XSS vulnerability CVE-2014-9342

Security Advisory Description Cross-site scripting XSS vulnerability in the tree view pltree.php feature in Application Security Manager ASM in F5 BIG-IP 11.3.0 allows remote attackers to inject arbitrary web script or HTML by accessing a crafted URL during automatic policy generation...