7 matches found
Intern Record System v1.0 - SQL Injection (Unauthenticated) Vulnerability
Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link: https://download-media.code-projects.org/2020/03/InternRecordSystemInPHPWithSourceCode.zip...
Intern Record System 1.0 SQL Injection
Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Date: 2022-06-09 Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link:...
Intern Record System v1.0 - SQL Injection (Unauthenticated)
Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Date: 2022-06-09 Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link:...
CVE-2022-40347
creationtimestamp| type| source ---|---|--- 2023-02-17 16:13:09+00:00| seen| https://t.me/cibsecurity/58432 2023-04-06 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51274...
CVE-2022-40347
SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...
CVE-2022-40347
SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...
CVE-2022-40347
CVE-2022-40347 concerns Intern Record System v1.0, exposing a critical SQL Injection in /intern/controller.php via the parameters phone , email , deptType , and name . The root cause is unsafely constructed queries that allow an attacker to access or modify data and potentially execute arbitrary ...