3490 matches found
CVE-2023-46023
SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...
CVE-2023-46022
SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...
PT-2023-29804 · Unknown · Code-Projects Blood Bank
Name of the Vulnerable Software and Affected Versions: Code-Projects Blood Bank version 1.0 Description: The issue allows attackers to execute arbitrary SQL commands. This is achieved by exploiting the bid parameter in the delete.php file. Recommendations: For Code-Projects Blood Bank version 1.0...
Code-Projects Simple Task List Security Vulnerability
Code-Projects Simple Task List is Code-Projects open source a simple task list system . Code-Projects Simple Task List version 1.0 has a security vulnerability , the vulnerability stems from allowing an attacker to obtain sensitive information through the status parameter in addTask.php...
Code-Projects Blood Bank Security Breach
Code-Projects Blood Bank is a blood bank system for the Code-Projects project. A security vulnerability exists in Code-Projects Blood Bank version 1.0 that originated from allowing an attacker to run arbitrary SQL commands via the bid parameter in delete.php...
CVE-2023-46023
CVE-2023-46023 affects Code-Projects Simple Task List 1.0. The vulnerability is a SQL injection in addTask.php caused by improper handling of the status parameter, allowing an attacker to obtain sensitive information. Public sources (e.g., Exploit DB and PacketStorm) provide a PoC and exploit det...
CVE-2023-46023
SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...
CVE-2023-46022
SQL Injection vulnerability in delete.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via the 'bid' parameter...
PT-2023-29805 · Unknown · Code-Projects Simple Task List
Name of the Vulnerable Software and Affected Versions: Code-Projects Simple Task List version 1.0 Description: A SQL injection issue allows attackers to obtain sensitive information by manipulating the status parameter in the "addTask.php" file. Recommendations: For Code-Projects Simple Task List...
CVE-2023-46022
CVE-2023-46022 concerns Code-Projects Blood Bank v1.0, with a SQL Injection in delete.php via the bid parameter. The root cause is improper input handling in delete.php, enabling attackers to execute arbitrary SQL commands. Reported impact includes potential data exposure and unauthorized databas...
CVE-2023-46020
Cross Site Scripting XSS in updateprofile.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'rename', 'remail', 'rphone' and 'rcity' parameters...
CVE-2023-46021
SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter...
CVE-2023-46021
SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter...
CVE-2023-46021
SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter...
CVE-2023-46019
Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...
CVE-2023-46019
Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...
Cross site scripting
Cross Site Scripting XSS vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'error' parameter...
Sql injection
SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary commands via the 'reqid' parameter...
CVE-2023-46016
Cross Site Scripting XSS in abs.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via the 'search' parameter in the application URL...
CVE-2023-46015
Cross Site Scripting XSS vulnerability in index.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary code via 'msg' parameter in application URL...