CVE-2024-44630

Multiple parameters in register.php in PHPGurukul Student Record System 3.20 are vulnerable to SQL injection. These include: c-full, fname, mname,lname, gname, ocp, nation, mobno, email, board1, roll1, pyear1, board2, roll2, pyear2, sub1,marks1, sub2, course-short, income, category, ph, country,...

Simple Task Managing System SQL注入漏洞

Simple Task Managing System is a simple task management system. A security vulnerability exists in Simple Task Managing System v1.0, which was discovered to contain an SQL injection vulnerability via the bookId parameter on board.php...

Sql injection

SQL injection vulnerability in view.topics.php in Yuhhu Superstar 2008 allows remote attackers to execute arbitrary SQL commands via the board parameter...

CVE-2008-1481

The provided sources confirm a Cross-site Scripting (XSS) vulnerability in webSPELL 4.1.2 (component: index.php) exposed via the board parameter. The root cause discussed is lack of input sanitization/validation for that parameter, enabling injection of arbitrary script or HTML. Public references...

CVE-2008-1481

Cross-site scripting XSS vulnerability in index.php in webSPELL 4.1.2 allows remote attackers to inject arbitrary web script or HTML via the board parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...