code-projects Online Class and Exam Scheduling System 注入漏洞

Code-Projects Online Class and Exam Scheduling System is an online class and exam scheduling system from Code-Projects, Inc. An injection vulnerability exists in code-projects Online Class and Exam Scheduling System version 1.0, which stems from a parameter id in the file /pages/term.php that can...

Code-Projects Online Class and Exam Scheduling System 安全漏洞

Code-Projects Online Class and Exam Scheduling System is an online class and exam scheduling system from Code-Projects, Inc. A security vulnerability exists in Code-Projects Online Class and Exam Scheduling System version 1.0, which stems from a parameter salut in the file /pages/teachersave.php...

Code-Projects Online Class and Exam Scheduling System 注入漏洞

Code-Projects Online Class and Exam Scheduling System is an online class and exam scheduling system from Code-Projects, Inc. An injection vulnerability exists in Code-Projects Online Class and Exam Scheduling System version 1.0, which stems from a parameter id in the file /pages/roomupdate.php th...

CVE-2024-12492 code-projects Farmacia visualizar-usuario.php sql injection

A vulnerability was found in code-projects Farmacia 1.0. It has been rated as critical. This issue affects some unknown processing of the file /visualizar-usuario.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed ...

CVE-2024-12489 code-projects Online Class and Exam Scheduling System term.php sql injection

A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0. It has been classified as critical. This affects an unknown part of the file /pages/term.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-12488

Code-Projects Online Class and Exam Scheduling System 1.0 is affected by a SQL injection in the /pages/subject_update.php file via the id parameter. The vulnerability, described across multiple sources (NVD, CVE records, CNVD, Red Hat, CNVD mirrors), indicates remote exploitation with publicly di...

CVE-2024-12486 code-projects Online Class and Exam Scheduling System rank_update.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Online Class and Exam Scheduling System 1.0. Affected is an unknown function of the file /pages/rankupdate.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...

CVE-2024-12359 code-projects Admin Dashboard vendor_management.php cross site scripting

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

CVE-2024-12359 code-projects Admin Dashboard vendor_management.php cross site scripting

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

Code-Projects Online Class and Exam Scheduling System 安全漏洞

Code-Projects Online Class and Exam Scheduling System is an online class and exam scheduling system from Code-Projects, Inc. A security vulnerability exists in Code-Projects Online Class and Exam Scheduling System version 1.0, which stems from an SQL injection vulnerability contained in the id...

Code-Projects Admin Dashboard 安全漏洞

Code-Projects Admin Dashboard is an administration dashboard for Code-Projects open source. A security vulnerability exists in Code-Projects Admin Dashboard version 1.0, which stems from a cross-site scripting vulnerability contained in the username parameter of the /vendormanagement.php page...

CVE-2024-12233

CVE-2024-12233 affects code-projects Online Notice Board up to version 1.0, targeting the Profile Picture Handler. The flaw arises from processing the img argument in /registration.php, allowing unrestricted file uploads and enabling remote exploitation. Multiple connected sources corroborate a c...

CVE-2024-12232

A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...

CVE-2024-12232 code-projects Simple CRUD Functionality index.php cross site scripting

A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...

code-projects Hotel Management System 安全漏洞

Code-Projects Hotel Management System is an open source hotel management system from Code-Projects. A security vulnerability exists in code-projects Hotel Management System version 1.0 due to a buffer overflow in parameter Str2...

Code-Projects Online Notice Board System 代码问题漏洞

Code-Projects Online Notice Board System is a Code-Projects open source online bulletin board system. A code issue vulnerability exists in Code-Projects Online Notice Board System prior to version 1.0, which stems from an unrestricted upload of the parameter img...

CVE-2024-12186

CVE-2024-12186 affects Code-projects Hotel Management System 1.0, specifically the file hotelnew.c in the Available Room Handler. The issue is a stack-based overflow caused by manipulation of the argument admin_entry, with local access required to exploit. Multiple connected sources confirm the v...

CVE-2024-12007

A vulnerability, which was classified as critical, was found in code-projects Farmacia 1.0. This affects an unknown part of the file /visualizar-produto.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2024-12007 code-projects Farmacia visualizar-produto.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Farmacia 1.0. This affects an unknown part of the file /visualizar-produto.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2024-12007

CVE-2024-12007 affects code-projects Farmacia 1.0. The vulnerability resides in /visualizar-produto.php where manipulating the id parameter leads to SQL injection. Impact is remote exploitation with public disclosure of the exploit. Remediation guidance from PT-2024-17399 suggests input validatio...