3490 matches found
CVE-2024-5048 code-projects Budget Management index.php sql injection
A vulnerability classified as critical was found in code-projects Budget Management 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument edit leads to sql injection. The attack can be launched remotely. The exploit has been...
CVE-2024-4973
A vulnerability classified as critical was found in code-projects Simple Chat System 1.0. This vulnerability affects unknown code of the file /register.php. The manipulation of the argument name/number/address leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-4975 code-projects Simple Chat System Message cross site scripting
A vulnerability, which was classified as problematic, has been found in code-projects Simple Chat System 1.0. This issue affects some unknown processing of the component Message Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
CVE-2024-4974 code-projects Simple Chat System register.php cross site scripting
A vulnerability, which was classified as problematic, was found in code-projects Simple Chat System 1.0. Affected is an unknown function of the file /register.php. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-4974 code-projects Simple Chat System register.php cross site scripting
A vulnerability, which was classified as problematic, was found in code-projects Simple Chat System 1.0. Affected is an unknown function of the file /register.php. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-4972
A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...
CVE-2024-4972 code-projects Simple Chat System login.php sql injection
A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...
CVE-2024-4972
The CVE-2024-4972 entry concerns code-projects Simple Chat System 1.0. Affected component: login.php, where manipulating the email/password parameters enables SQL injection. This vulnerability is exploitable remotely, and public disclosures exist. Connected documents identify the affected product...
CVE-2024-4972 code-projects Simple Chat System login.php sql injection
A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...
PT-2024-33660 · Unknown · Code-Projects Simple Chat System
Name of the Vulnerable Software and Affected Versions: code-projects Simple Chat System version 1.0 Description: A problematic issue was found in the code-projects Simple Chat System, affecting an unknown function of the file /register.php. The manipulation of the name argument leads to cross-sit...
CVE-2024-34954
Code-projects Budget Management 1.0 is vulnerable to Cross Site Scripting XSS via the budget parameter...
CVE-2024-34954
Code-projects Budget Management 1.0 is vulnerable to Cross Site Scripting XSS via the budget parameter...
CVE-2024-34955
Code-projects Budget Management 1.0 is vulnerable to SQL Injection via the delete parameter...
CVE-2024-34955
Code-projects Budget Management 1.0 is vulnerable to SQL Injection via the delete parameter...
CVE-2024-34955
Code-projects Budget Management 1.0 is vulnerable to SQL Injection via the delete parameter...
CVE-2024-34955
CVE-2024-34955 affects Code-projects Budget Management 1.0. The vulnerability is SQL Injection via the delete parameter in the application, with a CVSS v3.1 base score of 9.8 (Critical); impact on confidentiality, integrity, and availability is High. Exploitation is possible without authenticatio...
CVE-2024-34954
CVE-2024-34954 affects Code-projects Budget Management 1.0. The vulnerability is Cross Site Scripting (XSS) exploitable via the budget parameter. According to the CVE, the base CVSS v3.1 score is 6.1 (Medium): Network attack vector, no privileges, user interaction required, with confidentiality/i...
CVE-2024-34954
Code-projects Budget Management 1.0 is vulnerable to Cross Site Scripting XSS via the budget parameter...
PT-2024-26269 · Unknown · Code-Projects Budget Management
Name of the Vulnerable Software and Affected Versions: Code-projects Budget Management version 1.0 Description: The issue concerns Cross Site Scripting XSS via the budget parameter. This allows for potential malicious script injection, affecting the security of the application. Recommendations: F...
PT-2024-26270 · Unknown · Code-Projects Budget Management
Name of the Vulnerable Software and Affected Versions: Code-projects Budget Management version 1.0 Description: The issue is related to SQL Injection, which occurs via the delete parameter. This allows for potential manipulation of database queries. Recommendations: For Code-projects Budget...