3490 matches found
CVE-2024-25314
Code-projects Hotel Managment System 1.0 is affected by CVE-2024-25314. The vulnerability is a SQL Injection via the sid parameter in Hotel/admin/show.php?sid=2, impacting confidentiality, integrity, and availability (CVSS v3.1: 9.8). The available documents identify the affected component and th...
CVE-2024-25313
The CVE-2024-25313 entry concerns Code-projects Simple School Managment System 1.0 with an authentication bypass in School/teacher_login.php via the username and password parameters. Public documents consistently describe bypass of authentication (high impact: confidentiality, integrity, availabi...
PT-2024-20880 · Code Projects · Code-Projects Simple School Managment System
Name of the Vulnerable Software and Affected Versions: Code-projects Simple School Managment System version 1.0 Description: The issue allows SQL Injection via the id parameter at the "School/delete.php?id=5" endpoint. This means an attacker could potentially inject malicious SQL code by...
CVE-2024-25305
Code-projects Simple School Managment System 1.0 allows Authentication Bypass via the username and password parameters at School/index.php...
CVE-2024-25308
CVE-2024-25308 concerns Code-projects Simple School Managment System 1.0, where an SQL injection flaw exists in the teacher_login.php endpoint via the name parameter. The CVSS metrics included with the entry indicate a high impact: base score 8.8 (Confidentiality, Integrity, Availability all High...
CVE-2024-25312
Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/subdelete.php?id=5."...
CVE-2024-25310
Code-projects Simple School Managment System 1.0 is affected by a SQL Injection in the endpoint School/delete.php?id=5. The vulnerability stems from unsanitized input in the id parameter, enabling arbitrary SQL execution with potential impact on confidentiality, integrity, and availability (CVSSv...
CVE-2024-0722
A vulnerability was found in code-projects Social Networking Site 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file message.php of the component Message Page. The manipulation of the argument Story leads to cross site scripting. The attack may be...
Cross site scripting
A vulnerability was found in code-projects Social Networking Site 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file message.php of the component Message Page. The manipulation of the argument Story leads to cross site scripting. The attack may be...
CVE-2024-0722 code-projects Social Networking Site Message Page message.php cross site scripting
A vulnerability was found in code-projects Social Networking Site 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file message.php of the component Message Page. The manipulation of the argument Story leads to cross site scripting. The attack may be...
PT-2024-15781 · Unknown · Code-Projects Social Networking Site
Name of the Vulnerable Software and Affected Versions: code-projects Social Networking Site version 1.0 Description: A vulnerability was found in the code-projects Social Networking Site, affecting some unknown functionality of the file message.php of the component Message Page. The manipulation ...
CVE-2024-0504 code-projects Simple Online Hotel Reservation System Make a Reservation Page add_reserve.php cross site scripting
A vulnerability has been found in code-projects Simple Online Hotel Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file addreserve.php of the component Make a Reservation Page. The manipulation of the argument Firstname/Lastname with the input...
CVE-2024-0503 code-projects Online FIR System registercomplaint.php cross site scripting
A vulnerability was found in code-projects Online FIR System 1.0. It has been classified as problematic. This affects an unknown part of the file registercomplaint.php. The manipulation of the argument Name/Address leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2024-0489
A vulnerability was found in code-projects Fighting Cock Information System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/action/editchicken.php. The manipulation of the argument ref leads to sql injection. The attack can be initiated remotely...
Sql injection
A vulnerability was found in code-projects Fighting Cock Information System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/action/editchicken.php. The manipulation of the argument ref leads to sql injection. The attack can be initiated remotely...
CVE-2024-0489 code-projects Fighting Cock Information System edit_chicken.php sql injection
A vulnerability was found in code-projects Fighting Cock Information System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/action/editchicken.php. The manipulation of the argument ref leads to sql injection. The attack can be initiated remotely...
CVE-2024-0488 code-projects Fighting Cock Information System new-feed.php sql injection
A vulnerability was found in code-projects Fighting Cock Information System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/action/new-feed.php. The manipulation of the argument typefeed leads to sql injection. It is possible to initiate the attack remotel...
CVE-2024-0487 code-projects Fighting Cock Information System delete-vaccine.php sql injection
A vulnerability was found in code-projects Fighting Cock Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/action/delete-vaccine.php. The manipulation of the argument ref leads to sql injection. The attack may be launched...
CVE-2024-0487 code-projects Fighting Cock Information System delete-vaccine.php sql injection
A vulnerability was found in code-projects Fighting Cock Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/action/delete-vaccine.php. The manipulation of the argument ref leads to sql injection. The attack may be launched...
CVE-2024-0487
CVE-2024-0487 affects code-projects Fighting Cock Information System 1.0. The vulnerability is a SQL injection in the file /admin/action/delete-vaccine.php caused by manipulation of the ref argument. It can be exploited remotely and has been publicly disclosed. Impact is described as high for con...