CVE-2023-7130 code-projects College Notes Gallery login.php sql injection

A vulnerability has been found in code-projects College Notes Gallery 2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument user leads to sql injection. The exploit has been disclosed to the public and ma...

CVE-2023-7149

CVE-2023-7149 affects code-projects QR Code Generator 1.0. The vulnerability is a cross-site scripting (XSS) flaw in the /download.php?file=author.png parameter, exploitable via input such as ">; this can be triggered remotely and requires user interaction. Several sources corroborate the issu...

CVE-2023-7143 code-projects Client Details System regester.php cross site scripting

A vulnerability was found in code-projects Client Details System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/regester.php. The manipulation of the argument fname/lname/email/contact leads to cross site scripting. The attack may be...

CVE-2023-7143

Code-projects Client Details System 1.0 has a cross-site scripting vulnerability in /admin/regester.php. The issue arises from manipulation of fname, lname, email, or contact, enabling likely remote exploitation. Connected sources (NVD/NVD-derived entries and PT-Security) confirm the vulnerabilit...

CVE-2023-7141

A vulnerability was found in code-projects Client Details System 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/update-clients.php. The manipulation of the argument uid leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2023-7141

A vulnerability was found in code-projects Client Details System 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/update-clients.php. The manipulation of the argument uid leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2023-7142

A vulnerability was found in code-projects Client Details System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/clientview.php. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed to th...

Sql injection

A vulnerability was found in code-projects Client Details System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/clientview.php. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed to th...

CVE-2023-7142 code-projects Client Details System clientview.php sql injection

A vulnerability was found in code-projects Client Details System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/clientview.php. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed to th...

CVE-2023-7142

Summary (CVE-2023-7142): Code-Projects Client Details System 1.0 contains a SQL injection in /admin/clientview.php via the ID parameter. The vulnerability arises from manipulation of the ID argument, with public disclosure of the exploit. NVD lists CVSS-3.1 scores ranging from 9.8 (CRITICAL) to o...

CVE-2023-7141 code-projects Client Details System update-clients.php sql injection

A vulnerability was found in code-projects Client Details System 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/update-clients.php. The manipulation of the argument uid leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2023-7139

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql...

CVE-2023-7140

CVE-2023-7140 affects code-projects Client Details System 1.0. The vulnerability arises from manipulating the id parameter in /admin/manage-users.php, leading to a SQL injection. Multiple connected sources corroborate an in-the-wild exploit and public disclosure. The exact impacted versions and a...

CVE-2023-7139

The CVE-2023-7139 entry affects the code-projects Client Details System 1.0 . A vulnerability exists in the file /admin/regester.php of the HTTP POST Request Handler where manipulation of the arguments fname , lname , email , and contact leads to an SQL injection . The vulnerability has been disc...

CVE-2023-7139 code-projects Client Details System HTTP POST Request regester.php sql injection

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql...

CVE-2023-7137

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the component HTTP POST Request Handler. The manipulation of the argument uemail leads to sql injection. The exploit has been...

CVE-2023-7138

A vulnerability, which was classified as critical, was found in code-projects Client Details System 1.0. This affects an unknown part of the file /admin of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to...

CVE-2023-7137

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the component HTTP POST Request Handler. The manipulation of the argument uemail leads to sql injection. The exploit has been...

Sql injection

A vulnerability, which was classified as critical, has been found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the component HTTP POST Request Handler. The manipulation of the argument uemail leads to sql injection. The exploit has been...

Sql injection

A vulnerability, which was classified as critical, was found in code-projects Client Details System 1.0. This affects an unknown part of the file /admin of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to...