PT-2023-32876 · Unknown · Code-Projects E-Commerce Website

Name of the Vulnerable Software and Affected Versions: code-projects E-Commerce Website version 1.0 Description: A critical issue was found in the code-projects E-Commerce Website, affecting an unknown functionality of the file product details.php. The manipulation of the prod id argument leads t...

PT-2023-32877 · Unknown · Code-Projects E-Commerce Website

Name of the Vulnerable Software and Affected Versions: code-projects E-Commerce Website version 1.0 Description: A critical issue affects some unknown functionality of the file user signup.php. The manipulation of the firstname, middlename, email, address, contact, or username arguments leads to...

PT-2023-32875 · Unknown · Code-Projects E-Commerce Website

Name of the Vulnerable Software and Affected Versions: code-projects E-Commerce Website version 1.0 Description: A critical issue was found in the code-projects E-Commerce Website, affecting an unknown function of the file index search.php. The manipulation of the search argument leads to SQL...

CVE-2023-7075

CVE-2023-7075 affects code-projects Point of Sales and Inventory Management System 1.0. A cross-site scripting vulnerability exists in the /main/checkout.php file, triggered by manipulating the pt parameter. The issue is exploitable remotely and public exploits have been disclosed. No patch/versi...

CVE-2023-7057 code-projects Faculty Management System yearlevel.php cross site scripting

A vulnerability, which was classified as problematic, has been found in code-projects Faculty Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/pages/yearlevel.php. The manipulation of the argument Year Level/Section leads to cross site scripting. The...

Faculty Management System Cross-Site Scripting Vulnerability

Faculty Management System is an open source faculty management system from code-projects. Faculty Management System suffers from a cross-site scripting vulnerability that originates from /admin/pages/yearlevel.php may lead to cross-site scripting...

CVE-2023-6652

CVE-2023-6652 affects code-projects Matrimonial Site 1.0; the vulnerable component is the register() function in /register.php, where input manipulation leads to SQL injection. The vulnerability is exploitable remotely and has been disclosed publicly. Multiple sources (NVD, Red Hat, CVE landings,...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

Sql injection

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

Sql injection

SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...

Code-Projects Blood Bank Security Breach

Code-Projects Blood Bank is a blood bank system for the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0 that originated from allowing an attacker to run arbitrary SQL commands via the bid parameter in delete.php...

Code-Projects Simple Task List Security Vulnerability

Code-Projects Simple Task List is Code-Projects open source a simple task list system . Code-Projects Simple Task List version 1.0 has a security vulnerability , the vulnerability stems from allowing an attacker to obtain sensitive information through the status parameter in addTask.php...

CVE-2023-46023

CVE-2023-46023 affects Code-Projects Simple Task List 1.0. The vulnerability is a SQL injection in addTask.php caused by improper handling of the status parameter, allowing an attacker to obtain sensitive information. Public sources (e.g., Exploit DB and PacketStorm) provide a PoC and exploit det...

CVE-2023-46022

CVE-2023-46022 concerns Code-Projects Blood Bank v1.0, with a SQL Injection in delete.php via the bid parameter. The root cause is improper input handling in delete.php, enabling attackers to execute arbitrary SQL commands. Reported impact includes potential data exposure and unauthorized databas...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46023

SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46023

SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...