CVE-2023-3062 code-projects Agro-School Management System index.php sql injection

A vulnerability was found in code-projects Agro-School Management System 1.0. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument password leads to sql injection. It is possible to launch the attack remotely. The identifier o...

CVE-2023-3061 code-projects Agro-School Management System Attachment Image btn_functions.php unrestricted upload

A vulnerability was found in code-projects Agro-School Management System 1.0 and classified as critical. This issue affects some unknown processing of the file btnfunctions.php of the component Attachment Image Handler. The manipulation leads to unrestricted upload. The attack may be initiated...

CVE-2023-3060 code-projects Agro-School Management System btn_functions.php doAddQuestion cross site scripting

A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified as problematic. This vulnerability affects the function doAddQuestion of the file btnfunctions.php. The manipulation of the argument Question leads to cross site scripting. The attack can be initiated...

CVE-2023-3060

CVE-2023-3060 affects code-projects’ Agro-School Management System 1.0, specifically the vulnerable function doAddQuestion in btn_functions.php. The issue arises from improper handling of the Question argument, enabling cross-site scripting (XSS). Exploitation is described as remote. Several conn...

Sql injection

A vulnerability classified as critical has been found in code-projects Bus Dispatch and Information System 1.0. Affected is an unknown function of the file deletebus.php. The manipulation of the argument busid leads to sql injection. It is possible to launch the attack remotely. The exploit has...

CVE-2023-2951

The CVE-2023-2951 entry concerns code-projects Bus Dispatch and Information System 1.0. The vulnerability is a SQL injection in an unknown function within delete_bus.php caused by manipulated busid, enabling remote exploitation. Multiple sources confirm the impact and public disclosure of the exp...

CVE-2023-2774

A vulnerability was found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file viewbranch.php. The manipulation of the argument branchid leads to sql injection. The attack may be launched remotely. Th...

Sql injection

A vulnerability was found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file viewbranch.php. The manipulation of the argument branchid leads to sql injection. The attack may be launched remotely. Th...

Design/Logic Flaw

A vulnerability was found in code-projects Simple Photo Gallery 1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-229282 is the identifier assigned to this vulnerability...

CVE-2023-2776

The vulnerability CVE-2023-2776 affects code-projects Simple Photo Gallery 1.0. Affects uploading logic in the application, due to lack of validation, enabling arbitrary file uploads. This can be exploited remotely and may lead to unauthorized actions on the server, with high impact noted in NVD ...

CVE-2023-2776 code-projects Simple Photo Gallery unrestricted upload

A vulnerability was found in code-projects Simple Photo Gallery 1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-229282 is the identifier assigned to this vulnerability...

CVE-2023-2775 code-projects Bus Dispatch and Information System adminHome.php sql injection

A vulnerability was found in code-projects Bus Dispatch and Information System 1.0. It has been classified as critical. This affects an unknown part of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-2775

Affected: code-projects Bus Dispatch and Information System 1.0. Vulnerable component: adminHome.php. Root cause: manipulation of the reach_city argument enables SQL injection, with remote exploit possible. Public exploit disclosed. Documents also mention related advisories (VDB-229281). Impact a...

CVE-2023-2774 code-projects Bus Dispatch and Information System view_branch.php sql injection

A vulnerability was found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file viewbranch.php. The manipulation of the argument branchid leads to sql injection. The attack may be launched remotely. Th...

CVE-2023-2774

CVE-2023-2774 affects code-projects Bus Dispatch and Information System 1.0, targeting the view_branch.php/view branch.php component. The root cause is improper handling of the branchid parameter, enabling SQL injection that can be exploited remotely. Multiple sources confirm a public exploit exi...

Sql injection

A vulnerability has been found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file viewadmin.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...

CVE-2023-2773 code-projects Bus Dispatch and Information System view_admin.php sql injection

A vulnerability has been found in code-projects Bus Dispatch and Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file viewadmin.php. The manipulation of the argument adminid leads to sql injection. The attack can be launched...

CVE-2023-2773

CVE-2023-2773 affects code-projects Bus Dispatch and Information System 1.0. The vulnerability is a SQL injection in the view_admin.php functionality triggered by manipulating the adminid parameter. The issue can be exploited remotely, and the vulnerability impact is described as high (confidenti...

PT-2023-21312 · Unknown · Code-Projects Bus Dispatch/Information System

Name of the Vulnerable Software and Affected Versions: code-projects Bus Dispatch and Information System version 1.0 Description: A critical issue was found in the code-projects Bus Dispatch and Information System, affecting some unknown functionality of the file view branch.php. The manipulation...

Design/Logic Flaw

A vulnerability, which was classified as critical, was found in code-projects Simple Online Hotel Reservation System 1.0. Affected is an unknown function of the file addroom.php. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. VDB-223554 is the...