CVE-2023-7107 code-projects E-Commerce Website user_signup.php sql injection

A vulnerability was found in code-projects E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file usersignup.php. The manipulation of the argument firstname/middlename/email/address/contact/username leads to sql injection. The attac...

CVE-2023-7107 code-projects E-Commerce Website user_signup.php sql injection

A vulnerability was found in code-projects E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file usersignup.php. The manipulation of the argument firstname/middlename/email/address/contact/username leads to sql injection. The attac...

CVE-2023-7107

CVE-2023-7107 affects code-projects E-Commerce Website 1.0, exploiting SQL injection in the file user_signup.php. The vulnerability targets the parameters firstname, middlename, email, address, contact, and username, enabling remote manipulation of SQL queries. Impact is described with high conce...

CVE-2023-7106

CVE-2023-7106 involves a SQL injection in the code-projects E-Commerce Website 1.0. The vulnerability stems from unsafely handling the prod_id parameter in the file product_details.php, enabling attacker-controlled input to influence SQL queries. Reports indicate the flaw can be exploited remotel...

CVE-2023-7097

A vulnerability classified as critical has been found in code-projects Water Billing System 1.0. This affects an unknown part of the file /addbill.php. The manipulation of the argument ownersid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2023-7097 code-projects Water Billing System addbill.php sql injection

A vulnerability classified as critical has been found in code-projects Water Billing System 1.0. This affects an unknown part of the file /addbill.php. The manipulation of the argument ownersid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2023-7096

A flaw has been found in code-projects Faculty Management System 1.0. The affected element is an unknown function of the file /admin/php/crud.php. This manipulation of the argument fieldname/tablename causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

Sql injection

A vulnerability was found in code-projects Faculty Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/php/crud.php. The manipulation of the argument fieldname leads to sql injection. The attack may be launched remotely. Th...

PT-2023-32877 · Unknown · Code-Projects E-Commerce Website

Name of the Vulnerable Software and Affected Versions: code-projects E-Commerce Website version 1.0 Description: A critical issue affects some unknown functionality of the file user signup.php. The manipulation of the firstname, middlename, email, address, contact, or username arguments leads to...

PT-2023-32876 · Unknown · Code-Projects E-Commerce Website

Name of the Vulnerable Software and Affected Versions: code-projects E-Commerce Website version 1.0 Description: A critical issue was found in the code-projects E-Commerce Website, affecting an unknown functionality of the file product details.php. The manipulation of the prod id argument leads t...

PT-2023-32875 · Unknown · Code-Projects E-Commerce Website

Name of the Vulnerable Software and Affected Versions: code-projects E-Commerce Website version 1.0 Description: A critical issue was found in the code-projects E-Commerce Website, affecting an unknown function of the file index search.php. The manipulation of the search argument leads to SQL...

CVE-2023-7075

CVE-2023-7075 affects code-projects Point of Sales and Inventory Management System 1.0. A cross-site scripting vulnerability exists in the /main/checkout.php file, triggered by manipulating the pt parameter. The issue is exploitable remotely and public exploits have been disclosed. No patch/versi...

CVE-2023-7057 code-projects Faculty Management System yearlevel.php cross site scripting

A vulnerability, which was classified as problematic, has been found in code-projects Faculty Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/pages/yearlevel.php. The manipulation of the argument Year Level/Section leads to cross site scripting. The...

Faculty Management System Cross-Site Scripting Vulnerability

Faculty Management System is an open source faculty management system from code-projects. Faculty Management System suffers from a cross-site scripting vulnerability that originates from /admin/pages/yearlevel.php may lead to cross-site scripting...

CVE-2023-6652

CVE-2023-6652 affects code-projects Matrimonial Site 1.0; the vulnerable component is the register() function in /register.php, where input manipulation leads to SQL injection. The vulnerability is exploitable remotely and has been disclosed publicly. Multiple sources (NVD, Red Hat, CVE landings,...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

CVE-2023-46022

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...

Sql injection

SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...

Sql injection

SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...