CVE-2024-13034 code-projects Chat System update_user.php cross site scripting

A vulnerability, which was classified as problematic, was found in code-projects Chat System 1.0. This affects an unknown part of the file /admin/updateuser.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has be...

CVE-2024-13034 code-projects Chat System update_user.php cross site scripting

A vulnerability, which was classified as problematic, was found in code-projects Chat System 1.0. This affects an unknown part of the file /admin/updateuser.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has be...

CVE-2024-13020 code-projects Chat System chatroom.php sql injection

A vulnerability classified as critical was found in code-projects Chat System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2024-13019

CVE-2024-13019 affects code-projects Chat System 1.0. The vulnerability arises in the /admin/update_room.php component, where the input parameter named name is not properly validated/escaped, enabling cross-site scripting. Exploitation is described as remote. Several sources corroborate the issue...

PT-2024-17868 · Unknown · Code-Projects Responsive Hotel Site

Name of the Vulnerable Software and Affected Versions: code-projects Responsive Hotel Site version 1.0 Description: A critical issue has been found in the code-projects Responsive Hotel Site, affecting an unknown functionality of the file /admin/newsletter.php. The manipulation of the eid argumen...

Code-Projects Hostel Management System 代码注入漏洞

Code-Projects Hostel Management System is an open source hostel management system from Code-Projects. A code injection vulnerability exists in Code-Projects Hostel Management System version 1.0, which originates from a cross-site scripting vulnerability in the fname/mname/lname parameter of the...

CVE-2024-12979 code-projects Job Recruitment _all_edits.php cn_update cross site scripting

A vulnerability was found in code-projects Job Recruitment 1.0 and classified as problematic. This issue affects the function cnupdate of the file /parse/alledits.php. The manipulation of the argument cname leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

CVE-2024-12968

A vulnerability classified as critical was found in code-projects Job Recruitment 1.0. Affected by this vulnerability is the function editjobpost of the file /parse/alledits.php. The manipulation of the argument jobtype leads to sql injection. The attack can be launched remotely. The exploit has...

CVE-2024-12967

A vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. Affected is the function flnupdate of the file /parse/alledits.php. The manipulation of the argument fname/lname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-12962

Code-projects Job Recruitment 1.0 is affected by an SQL injection in /_parse/_all_edits.php via the skillset parameter, exploitable remotely and publicly disclosed. Multiple sources corroborate a critical issue; remediation guidance is limited to workarounds such as disabling the all_edits.php sc...

CVE-2024-12936 code-projects Simple Admin Panel catDeleteController.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Simple Admin Panel 1.0. This issue affects some unknown processing of the file catDeleteController.php. The manipulation of the argument record leads to sql injection. The attack may be initiated remotely. The...

CVE-2024-12932 code-projects Simple Admin Panel addSizeController.php cross site scripting

A vulnerability was found in code-projects Simple Admin Panel 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file addSizeController.php. The manipulation of the argument size leads to cross site scripting. The attack can be launched...

Travel Management System 注入漏洞

Travel Management System is an open source travel management system from Code-Projects. An injection vulnerability exists in Travel Management System version 1.0, which stems from an incorrect manipulation of the parameter catid that can lead to sql injection...

Code-Projects Simple Admin Panel 安全漏洞

Code-Projects Simple Admin Panel is a simple admin panel for Code-Projects open source. A security vulnerability exists in Code-Projects Simple Admin Panel version 1.0, which stems from a size parameter SQL injection vulnerability in the addCatController.php file...

PT-2024-17834 · Code Projects · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue was found in the add xp function of the file / parse/ all edits.php. The manipulation of the job company argument leads to SQL injection. This issue can be exploited...

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability that originates from the parameter jobcompany in the addxp function of the file /parse/alledits.php that can lead to SQL injection...

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 suffers from an injection vulnerability, which originates from the parameter cname/url in the cnupdate function of the file /parse/alledits.php that can lead to SQL injection...

Code-Projects Job Recruitment 注入漏洞

Code-Projects Job Recruitment is a job portal of Code-Projects open source. Code-Projects Job Recruitment version 1.0 has an injection vulnerability that originates from the parameter jobtype in the editjobpost function of the file /parse/alledits.php that can lead to SQL injection...

Code-Projects Simple Admin Panel 注入漏洞

Code-Projects Simple Admin Panel is a simple admin panel from Code-Projects. An injection vulnerability exists in Code-Projects Simple Admin Panel version 1.0, which stems from the parameter cname that causes SQL injection...

CVE-2024-12928 code-projects Simple Admin Panel sql injection

A vulnerability, which was classified as critical, was found in code-projects Simple Admin Panel 1.0. This affects an unknown part. The manipulation of the argument cname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may b...