PT-2025-3772 · Unknown · Code-Projects Point Of Sales/Inventory Management System

Name of the Vulnerable Software and Affected Versions: code-projects Point of Sales and Inventory Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown function of the file /user/minus cart.php. The manipulation of the id argument leads to SQL...

PT-2024-36526 · Unknown · Oqtane Framework

Name of the Vulnerable Software and Affected Versions: Oqtane Framework affected versions not specified Description: The issue is related to Insecure Direct Object Reference IDOR in Oqtane.Controllers.UserController, allowing unauthorized users to access sensitive information of other users by...

PT-2024-16271 · Codezips · Codezips Pet Shop Management System

Name of the Vulnerable Software and Affected Versions: Codezips Pet Shop Management System version 1.0 Description: A critical issue has been found in the system, affecting the /animalsadd.php file. The manipulation of the id argument leads to SQL injection, which can be initiated remotely. The...

PT-2024-38181

Name of the Vulnerable Software and Affected Versions: SourceCodester School Log Management System version 1.0 Description: A critical issue has been found in the SourceCodester School Log Management System, affecting some unknown functionality of the file /admin/manage user.php. The manipulation...

PT-2023-18378 · Sourcecodester · Sourcecodester Task Reminder System

Name of the Vulnerable Software and Affected Versions: SourceCodester Task Reminder System version 1.0 Description: A critical issue was found in the system, affecting the file /admin/reminders/manage reminder.php. The manipulation of the id argument leads to SQL injection. It is possible to...

PT-2022-26780 · Unknown · Online Diagnostic Lab Management System

Name of the Vulnerable Software and Affected Versions: Online Diagnostic Lab Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/clients/view client.php" API endpoint. Recommendations:...

PT-2022-22133 · Pmb · Pmb

Name of the Vulnerable Software and Affected Versions: PMB version 7.3.10 Description: The issue allows reflected XSS via the id parameter in an lvl=author see request to "index.php". This can potentially lead to malicious script execution. Recommendations: For PMB version 7.3.10, consider...

PT-2022-7080 · Unknown · Microweber

Name of the Vulnerable Software and Affected Versions: microweber/microweber versions prior to 1.2.11 Description: The issue exists due to inadequate protection of the web page structure, allowing a remote attacker to conduct a cross-site scripting XSS attack. This is a reflected XSS vulnerabilit...